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(54) Device and method for authenticating user's access rights to resources according to the 
Challenge-Response principle 

(57) The present invention provides a device for 
authenticating user's access rights to resources, which 

comprises first memory means 111 for storing challeng- verification device 10, 

ing data 18, second memory means 115 for storing 
unique identifying information of the user 116, third 
memory means 113 for storing proof support informa- 
tion 13 which is a result of executing predetermined 
computations to the unique identifying information of the 
user 16 and unique security characteristic information 
of the device 14, response generation means 116 for 
generating a response 19 from the challenging data 18 
stored in the first memory means 111, the unique iden- 
tifying information 16 stored in the second memory 
means 1 15 and the proof support information 13 stored 
in the third memory means 1 13, and verification means 
106 for verifying the legitimacy of the response 19 by 
verifying that the response 19, the challenging data 18 
and the unique security characteristic information of the 
device 14 satisfy a specific predefined relation. v io7 
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Description 

The present invention relates to a device for 
authenticating user's access rights to resources. 

Program execution control technologies are known 
in the field to which the present invention belongs. The 
program execution control technologies are technolo- 
gies to: 

1 . Embed a routine for user authentication during 
the use of an application program; 

2. Have the routine examine whether the user 
attempting execution of the application possesses a 
key for proper authentication; and 

3. Continue the program only when the existence of 
the key for authentication is verified, otherwise to 
halt execution. 

By using these technologies, execution of the appli- 
cation program is enabled only for proper users having 
the authentication key. The technologies are commer- 
cialized in the software marketing field, two examples 
being SentinelSuperPro (trade mark) from Rainbow 
Technologies, Inc. and HASP (trade mark) from Aladdin 
Knowledge Systems, Ltd. 

In the use of program execution control technolo- 
gies, a user who executes software possesses an 
authentication key as user identification information. 
The authentication key is a key for encryption and is dis- 
tributed to the user by a party who allows use of soft- 
ware, a software vender, for example. The 
authentication key is securely sealed in a memory, or 
the like, of hardware to prevent duplication, and is deliv- 
ered to the user using physical means such as the 
postal service. The user mounts personal compu- 
ter/workstation using a designated method. When the 
user starts up the application program and when the 
execution of the program reaches the user authentica- 
tion routine, the program communicates with the hard- 
ware in which the authentication key of the user is 
embedded. Based on the results of the communication, 
the program identifies the authentication key, and 
moves the execution to the following step upon confir- 
mation of existence of the correct authentication key. If 
the communication fails and the verification of the exist- 
ence of the authentication key is not established, the 
program stops automatically, discontinuing the execu- 
tion of subsequent steps. 

Identification of the authentication key by the user 
authentication routine is executed according to the fol- 
lowing protocol, for example: 

1 . The user authentication routine generates and 
transmits an appropriate number to the hardware in 
which the key is embedded. 

2. The hardware in which the key is embedded 
encrypts the number using the embedded authenti- 
cation key and transmits it back to the authentica- 
tion routine. 



3. The authentication routine determines whether 
or not the number transmitted back is the number 
expected beforehand, or, in other words, the 
number obtained by encrypting the number with a 

5 correct authentication key. 

4. If the number transmitted back coincides with the 
expected number, the execution of the program is 
continued, otherwise the execution is halted. 

5. In this case, communication between the appli- 
io cation program and the hardware in which the 

authentication key is embedded must be different 
for each execution even if it is between the same 
location in the same application with the same 
hardware. 

75 Otherwise, a user who does not possess the cor- 
rect authentication key may be able to execute the 
program by recording once the content of communi- 
cation during the normal execution process, and by 
responding to the application program according to 

20 the recording each time the subsequent program is 
executed. Such improper execution of the applica- 
tion program by replaying the communication con- 
tent is called a replay attack. 

25 In order to prevent a replay attack, in general, a ran- 

dom number is generated and used for each communi- 
cation as the number to be transmitted to the hardware 
in which the key is embedded. 

The present invention has been made in view of the 

30 above circumstances and an aspect of the present 
invention is to provide a device for authenticating user's 
access rights to resources and its method which set 
both users and the protecting side such as application 
providers free from inconveniences caused by handling 

35 of large amount of unique information, for example, a lot 
of authentication keys, and thereby user's access rights 
are easily and simply authenticated when the execution 
control of the program, privacy protection of electronic 
mails, access control of files or computer resources and 

40 so forth are carried out. 

Additional aspects and advantages of the invention 
will be set forth in part in the description which follows 
and in part will be obvious from the description, or may 
be learned by practice of the invention. The aspects and 

45 advantages of the invention may be realized and 
attained by means of the instrumentalities and combina- 
tions particularly pointed out in the appended claims. It 
will be understood that each of the features described 
herein can be taken separately or jointly. To achieve the 

50 aspects and in accordance with the purpose of the 
invention, as embodied and broadly described herein, 
one aspect of a device for authenticating user's access 
rights to resources of the present invention comprises 
first memory means for storing challenging data, sec- 

55 ond memory means for storing unique identifying infor- 
mation of the user, third memory means for storing 
proof support information which is a result of executing 
predetermined computations to the user unique identi- 
fying information and unique security characteristic 
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information of the device, response generation means 
for generating a response from the challenging data 
stored in the first memory means, the unique identifying 
information stored in the second memory means and 
the proof support information stored in the third memory 
means, and verification means for verifying the legiti- 
macy of the response by verifying that the response, the 
challenging data and the unique security characteristic 
information of the device satisfy a specific predefined 
relation. 

With the above constitution, the unique security 
characteristic information of the device assigned to the 
protecting side and the unique identifying information of 
the user are made to be independent of each other. The 
information on actual access rights is represented as 
proof support information (i.e., an access ticket). The 
user has the user unique identifying information in 
advance, and on the other hand, a protector, such as a 
/ * program creator prepares the unique security charac- 
teristic information, or the counterpart of the unique 
security characteristic information in terms of the public 
key cryptography, independent of the user unique iden- 
tifying information held by the user. An access ticket is 
generated based on the user unique identifying informa- 
tion and the unique security characteristic information 
used in creation of the application program or the like. 
Access tickets are distributed to the users, whereby 
authentication of the user's access rights to resources 
such as execution control can be performed. Thus com- 
plexity occurring in the case where both sides of user 
and protector use the same information for performing 
authentication can be avoided. 

Moreover, in the above constitution, at least the 
second memory means and the response generation 
means may be confined in the protect means which pre- 
vents any data inside from being observed or being 
tampered with from the outside. It may also be possible 
to implement at least the second memory means and 
the response generation means within a small portable 
device such as a smart card. 

The response generating means may comprise first 
calculation means and second calculation means, 
wherein the first calculation means executes predeter- 
mined calculations to the user unique identifying infor- 
mation stored in the second memory means and the 
proof support information stored in the third memory 
means to obtain the unique security characteristic infor- 
mation as a result, and the second calculation means 
executes predetermined calculations to the challenging 
data stored in the first memory means and the unique 
security characteristic information calculated by the first 
calculation means to generate the response as a result 
of calculation. 

The above-described response generation means 
may comprise third calculation means, fourth calcula- 
tion means and fifth calculation means. The third calcu- 
lation means executes predetermined calculations to 
the challenging data stored in the first memory means 
and the proof support information stored in the third 



memory means, the fourth calculation means executes 
predetermined calculations to the challenging data 
stored in the first memory means and the user unique 
identifying information stored in the second memory 

s means, and the fifth calculation means executes prede- 
termined calculations to the results of calculation by the 
third and fourth calculation means, whereby the 
response is generated. In this case, at least the second 
memory means and the fourth calculation means can 

w be confined within the protect means which prevents 
any data inside from being observed or being tampered 
with from the outside. At least the second memory 
means and the fourth calculation means may be imple- 
mented within a small portable device such as a smart 

T 5 card. 

. The accompanying drawings, which are incorpo- 
rated in and constitute a part of this specification illus- 
trate embodiment of the invention and. together with the 
description, serve to explain the objects, advantages 
20 and principles of the invention. In the drawings: 

Fig. 1 is a block diagram showing an example of the 
fundamental constitution of the present invention; 
Fig. 2 is a block diagram showing ah example of the 

25 constitution of the present invention in case* that an 
entire device is implemented within a single PC; 
Fig. 3 is a block diagram showing the constitution of 
a first embodiment of a device for authenticating 
user's access rights to resources according to the 

30 present invention; 

Fig. 4 is a flow chart showing functions of means 
constituting the devices of the first embodiment; 
Fig. 5 is a block diagram showing the constitutions 
of a verification device and a proving device of a 

35 second embodiment of the device for authenticating 
user's access rights to resources according to the 
present invention; 

Fig. 6 is a flow chart showing functions of means 

constituting the verification device of the second 
40 embodiment; 

Fig. 7 is a block diagram showing a constitutional 

example of execution means of the verification 

means of the second embodiment; 

Fig. 8 is a flow chart showing functions of the con- 
45 stitutional example of the execution means shown 

in Fig. 7; 

Fig. 9 is a block diagram showing a second consti- 
tutional example of execution means of the verifica- 
tion means of the second embodiment; 
so Fig. 1 0 is a flow chart showing functions of the con- 
stitutional example of the execution means shown 
in Fig. 9; 

Fig. 11 is a block diagram showing a third constitu- 
tional example of execution means of the verifica- 
55 tion means of the second embodiment; 

Fig. 12 is a flow chart showing functions of the con- 
stitutional example of the execution means shown 
in Fig. 1 1 ; 

Fig. 13 is a block diagram showing a fourth consti- 
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tutional example of execution means of the verifica- 
tion means of the second embodiment; 
Fig. 14 is a flow chart showing functions of the con- 
stitutional example of the execution means shown 
in Fig. 13; 

Fig. 1 5 is a block diagram showing the constitution 
of a proving device of a third embodiment of the 
device for authenticating user's access rights to 
resources according to the present invention; 
Fig. 1 6 is a flow chart showing functions of means 
constituting the proving device of the third embodi- 
ment; 

Fig. 17 is a block diagram showing a constitutional 
example of a fourth embodiment of the device for 
authenticating user's access rights to resources 
according to the present invention; 
Fig. 18 is a block diagram showing another consti- 
tutional example of the fourth embodiment; 
Fig. 19 is a flow chart showing functions of means 
of the constitutional example shown in Fig. 17; 
Fig. 20 is a block diagram showing the constitution 
of a fifth embodiment of the device for authenticat- 
ing user's access rights to resources according to 
the present invention; 

Fig. 21 is a flow chart showing functions of means 
constituting a verification device of the fifth embod- 
iment; 

Fig. 22 is a block diagram showing the constitution 
of a sixth embodiment of the device for authenticat- 
ing user's access rights to resources according to 
the present invention; 

Fig. 23 is a flow chart showing functions of means 
constituting devices of the sixth embodiment; 
Fig. 24 is a block diagram showing the constitution 
of a seventh embodiment of the device for authenti- 
cating user's access rights to resources according 
to the present invention; 

Fig. 25 is a flow chart showing functions of means 
constituting devices of the seventh embodiment; 
and 

Fig. 26 is a block diagram showing a part of consti- 
tution of a proving device of ninth and tenth embod- 
iments of the device for authenticating user's 
access rights to resources according to the present 
invention. 

At first, an example of the fundamental constitution 
of the present invention is described. The user authenti- 
cation system of the example can be applied to privacy 
protection of electronic mails or control of access to files 
or computer resources as well as control of execution of 
applications. 

In Fig. 1 , the user authentication system comprises 
a verification device 10 and a proving device 11: the 
proving device 1 1 receives an access ticket (proof sup- 
port data) from an access ticket generation device 12; 
the verification device 10 executes a verification routine 
15; the proving device 11 retains user identifying infor- 
mation 16 and the access ticket 13 and executes a 
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response generation program 17. 

The access ticket generation device 12 is installed 
in the protector side, such as an application provider. 
The access ticket generation device 12 generates the 

5 access ticket 13 based on unique security characteristic 
information of the device 14 and the user identifying 
information 16 and the access ticket 13 is forwarded to 
the user through communication or sending of a floppy- 
diskette or the like to be retained by the proving device 

to ii of the user. Then the verification device 10 sends 
challenging data 18 to the proving device 11. The prov- 
ing device 11 generates a response 19 by utilizing the 
access ticket 1 3 and the user identifying information 1 6, 
and returns it to the verification device 10. The verifica- 

75 tion device 10 verifies the legitimacy of the response 
based on the challenging data, that is, the verification 
device 1 0 verifies that the response has been generated 
based on the challenging data and the unique security 
characteristic information of the device. 

20 If the legitimacy of the response is verified, the 
access rights of the user is authenticated; accordingly, 
continuation of execution of a program, access to files, 
and so forth, are permitted. 

With the above constitution, an example of execu- 

25 tion control of an application program is now described. 
In the above constitution, a user of an application 
program retains only one piece of user identifying infor- 
mation 16. The user identifying information is equivalent 
to a password in the password authentication and is 

30 unique, significant information which identifies the user. 
If it is possible for the user to copy and distribute the 
user identifying information 16, it will lead to the use of 
the application program by the user without legitimate 
access rights; therefore, the user identifying information 

35 16 is protected by protection means 160 so that even 
the user who is a legitimate owner of the user identifying 
information 16 cannot steal it. The protection means 
160 may be a hardware with a protecting effect (herein- 
after referred to as tamper-resistant hardware) against 

40 theft of the inside conditions by external probes. A 
method of implementation of the tamper-resistant hard- 
ware will be described later. 

In addition to the user identifying information 1 6, the 
response generation program 1 7 which executes prede- 

45 termined computations is provided to the user. The pro- 
gram 17 performs communication with a user 
authentication routine (verification routine 15): on 
receiving two parameters, namely, the user identifying 
information 16 and the access ticket 13, the program 1 7 

so executes computations to arbitrary inputted values to 
generate the response 19 for identifying the user. The 
user identifying information 16 is used in the course of 
the computation, and it is required to protect at least a 
part of the program 17 by the protection means 160 

55 since leakage of the user identifying information 16 to 
the outside will cause a problem by the above-described 
reason. 

Hereinafter, memory means for storing the user 
identifying information and a part of the program which 
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are protected by the protection means 160, device for 
executing the part of the program (for example, consist- 
ing of a memory and a MPU) and the protection means 
1 60 are integrally referred to as token (shown by the ref- 
erence numeral 20 in Fig. 1). The token may have port- 5 
ability, like a smart card. 

Similar to the conventional execution control tech- 
nologies, the verification routine 15 is set to the applica- 
tion program. The verification routine 1 5 is same as that 
of the conventional technologies in that it communicates 10 
with the response generation program 17 retained by 
the user, and continues execution of the program if and 
only if a returned result (response 18) is correct. There- 
fore, it is necessary that the program creator knows the 
method of computing the combination of transferred is 
data (challenging data 18) and correct returned data 
corresponding thereto (response 19). 

Some examples of functions of the verification rou- 
tine 15 are explained as follows: 

20 

1 . Data to be transferred (challenging data 18) and 
, expected returned data (expected value) are 

embedded ih the verification routine 15. The verifi- 
cation routine 15 fetches the data to be transferred 
and transfers it to the user, and receives the 25 
returned data from the user. Then the verification 
routine 15 compares the returned data from the 
user with the expected value: if they are identical 
with each other, the verification routine 15 executes 
the next step of the program; if they are not identi- 30 
cal, the verification routine 15 halts the execution of 
the program. 

In the case where the returned data is 
assumed to be a result of encryption of the trans- 
ferred data in accordance with a predetermined 35 
encryption algorithm, the unique security character- 
istic information of the device is an encryption key. 

2. Data to be transferred (challenging data 18) and 
data generated by applying a one-way function to 
expected returned data (expected value) are 40 
embedded in the verification routine 1 5. The verifi- 
cation routine 15 fetches the data to be transferred 
and transfers it to the user, and receives the 
returned data from the user. Then the verification 
routine 15 compares data generated by applying 45 
the one-way function to the returned data from the 
user with the expected value: if they are identical 
with each other, the verification routine 1 5 executes 
the next step of the program; if they are not identi- 
cal, the verification routine 15 halts the execution of so 
the program. 

In the case where the returned data is 
assumed to be a result of encryption of the trans- 
ferred data in accordance with a predetermined 
encryption algorithm, the unique security character- 55 
istic information of the device is an encryption key. 
■ 3. Protection is provided by encrypting a part of 
code of the application program in accordance with 
a predetermined encryption algorithm so that exe- 



cution of the program may be impossible. The veri- 
fication routine 15 transfers the encrypted code to 
the user and receives returned data from the user, 
and then replace* the received value with the 
encrypted code. 

With this constitution, execution of the program 
may be possible if and only if the returned data is a 
correct decryption of the encrypted code. In this 
case, the unique security characteristic information 
is a decryption key for decrypting the encrypted 
code. 

4. Protection is provided by encrypting a part of 
code of the application program in accordance with 
a predetermined encryption algorithm so that exe- 
cution of the program may be impossible. Moreover, 
data generated by encrypting a decryption key 
paired with the encryption key used for encrypting 
the code is embedded as transferred data in the 
verification routine 15. The verification routine 15 
transfers the encrypted decryption key to the user 
and receives returned data from the user, and then 
decrypts the encrypted code with the value of the 
received data as a decryption key. 

With this constitution, the encrypted code is 
correctly decrypted if and only if the returned data is 
a decryption key which has been correctly 
decrypted, and accordingly execution of the pro- 
gram becomes possible. In this case, the unique 
security characteristic information of the device is a 
decryption key for decrypting the encrypted decryp- 
tion key. 

In the conventional execution control technolo- 
gies, the user identifying information (authentica- 
tion key of the user) is identical with the unique 
security characteristic information of the device. 
The conventional response generation routine 
receives the unique security characteristic informa- 
tion and the data transferred from the verification 
routine as the input, and then executes computa- 
tions thereto for generating data to be returned. 

By contrast, the present invention is characterized 
in that the user identifying information 1 6 and the unique 
security characteristic information of the device 14 are 
independent of each other. In this constitutional exam- 
ple, the response generation program 17 adds the 
access ticket 13 to the user identifying information 16 
and the data transferred from the verification routine 1 5 
(challenging data 18) as the input, and then executes 
predetermined computations to them for generating the 
data to be returned (response 19). The constitution has 
the following properties: 

1 . The access ticket 1 3 is the data calculated based 
on the specific user identifying information 16 and 
the unique security characteristic information of the 
device. 

2. At least from the viewpoint of the computation 
amount, it is impossible to calculate the unique 
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security characteristic information from the access 
ticket 13 without knowing the user identifying infor- 
mation 1 6. 

3. The response generation program 17 executes 
computations for generating correct data to be 
returned if and only if a correct combination of the 
user identifying information 16 and the access 
ticket 13. Note that the access ticket 13 has been 
calculated based on the user identifying information 
16. 

With the constitution described so far, the execution 
control can be carried out by the following steps: the 
user has the user identifying information 16 in advance; 
the program creator prepares the application program 
independent of the user identifying information 16 
retained by the user; and the program creator generates 
the access ticket 1 3 based on the user identifying infor- 
mation 16 and the unique security characteristic infor- 
mation of the device 16 used in creating the application 
program and distributes the access ticket 1 3 to the user. 

It may be possible to constitute the user identifying 
information 16 by two pieces of user identifying informa- 
tion for distinguishing the information used for preparing 
the access ticket 1 3 from the information used in a com- 
munication program by the user. In the most represent- 
ative example, the user identifying information 16 is 
made to be a public key pair: the public key is published 
to be used for generating the access ticket; and the indi- 
vidual key is confined within the token 20 as user's indi- 
vidual secret information. In this case, it is possible to 
calculate the access ticket 13 white the user identifying 
information 16 is kept secret by calculating the access 
ticket 13 from the unique security characteristic informa- 
tion 1 4 and the public key of the public key pair. 

First Embodiment 

In a first embodiment, an access ticket t is defined 
as the relation (1). 



gcd (D, <|>(n)) = 1 



(2) 



t = D - e + to <t> (n) 



0) 



In the following bulleted paragraphs, symbols used 
in the above relation are described. 

An integer n is an RSA modulus, hence, a product 
of two very large prime numbers p and q (n = pq ). 

(n) denotes the Euler number of n, hence, a prod- 
uct of two integers p-1 and q-1 (<|><n) = (p-1)(q-1) ). 
A piece of user identifying information e is an inte- 
ger allocated to each user. A piece of user identify- 
ing information is unique to a user: a different user 
identifying information is allocated to a different 
user. 

An access-ticket secret key D is a private key of an 
RSA public key pair. Since the modulus is assumed 
to be n, the relation 2 is derived from the definition. 
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in the above, gcd (x, y) denotes the greatest com- 
mon divisor of two integers x and y. The existence 
of an integer E satisfying the relation (3), which is 
called an access-ticket public key, is derived from 
the relation (2). 



ED mod <(>(n) = 1 



(3) 



to is an integer dependent upon both n and e. It is 
required that a probably different value will be allo- 
cated to co if at least one of n and e is different: In 
defining to in a consistent manner, a one-way hash 
function h may be used. 



co = h (n | e) 



(4) 



In the relation (4), n | e denotes the concatenation 

20 of the two bit-string representations of n and e. A one 
way hash function h is a function having the property 
that it is extremely difficult to calculate two distinct x and 
y satisfying h(x) = h(y) . Known examples of one-way 
hash functions are the MD2, MD4 and MD5 of RSA 

25 Data Securities Inc.', and the standard SHS (Secure 
Hash Standard) of the U.S. federal government. 

Among the above numbers, t, E and n can be open 
to public without any risk, while the rest of the numbers, 
namely D, e, to, p, q and $ (n), are to be kept secret to 

30 everybody but those who are allowed to generate an 
access ticket. Fig. 3 depicts the constitution of the first 
embodiment. A verification device 10 comprises the fol- 
lowings: an access ticket public key storing means 101 ; 
a random number generation means 102; a random 

35 number storing means 103; a response storing means 
105; a verification means 106; an execution means 107; 
and an error trapping means 108. On the other hand, a 
proving device 1 1 comprises the foliowings: a challeng- 
ing data storing means 111; a first calculation means 

40 1 12; an access ticket storing means 1 13; a second cal- 
culation means 114; a user identifying information stor- 
ing means 115; and a response generation means 116. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described. 

45 

1. The verification device 10 is invoked by a user. 
The way to invoke the device varies depending 
upon how the device is implemented. A few exam- 
ples are now shown. First, the verification device 10 

so may be implemented as a part of an application 
program to be installed and executed on a user's 
PC or workstation. In this case, the user may invoke 
the verification device 1 0 by invoking the application 
program in ordinary ways. For example, the user 

55 may click the iconic symbol representing the appli- 
cation program on the computer screen with a 
pointing device such as a mouse, or may use a key- 
board. The verification device 10 may be imple- 
mented as a program installed and executed on a 
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server computer that is connected to a user's PC or 
workstation by means of computer network. In this 
case, in order to invoke the verification device 10, a 
user first invokes a communication program 
installed on his/her own PC or workstation: the 
communication program establishes a connection 
to the server, and asks the server to invoke the ver- 
ification device 10.. When the communication pro- 
gram and the server follow the TCP/IP protocols, for 
instance, the verification device 10 is allocated to a 
predefined port number on the server computer. 
When the communication program issues a 
requirement for establishing a connection to the 
port, inetd, a demon program running on the server 
computer, receives the requirement. After checking 
which program is allocated to the specified port, it 
finally invokes the verification device 10, and estab- 
lishes a connection between the verification device 
and the communication program. This way of imple- 
mentation is very common in networked computer 
systems like Internet. The verification device 10 
may be implemented as a program written on a 
ROM or EEPROM within a smart card reader- 
writer. In this case, the proving device 1 1 is a pro- 
gram installed on an IC chip of a smart card; the 
verification device 10 is invoked whenever a user 
inserts his/her smart card into the smart card 
reader-writer. 

2. The verification device 10 sends challenging 
data C and a modulus n to the challenging data 
storing means 1 1 1 of the proving device 1 1 . The 
modulus n is stored in the access-ticket public key 
storing means 101. On the other hand, challenging 
data C is generated as follows: the random number 
generation means 102 generates a random integer 
r so that r and the modulus n are relatively prime 
(gcd(r, n) = 1 ); the generated random integer r is 
stored in the random number storing means 103: 
finally, the random number generation means 102 
sets the value of C to r. As stated later in more 
detail, the response which the proving device 11 is 
to respond to the verification device 10. is RSA- 
encryption of r with D as the key and n as the mod- 
ulus. Since the value of C is identical to the random 
integer r, it varies with occurrence of communica- 
tion between the verification device 10 and the 
proving device 11. This prevents so-called replay 
attack from succeeding. 

3. The first calculation means 112 of the proving 
device 1 1 calculates an intermediate result R' 
according to the relation (5). An access ticket t to be 
used is stored in the access ticket storing means 
113. 

R' = C 1 mod n (5) 

4. The second calculation means 1 1 4 of the proving 
device 1 1 calculates a differential S according to 
the relation (6). A user identifying information e to 



be used is stored in the user identifying information 
storing means 1 15. 

S = C e modn (6) 

5 

5. Receiving R* and S from the first calculation 
means 112 and the second calculation means 114, 
the response generation means 1 16 of the proving 
device 1 1 calculates a response R according to the 

w relation (7). 

R = R'S mod n (7) 

6. The proving device 11 returns the generated 
is response R to the response storing means 105 of 

the verification device 10. 

7. The verification means 106 of the verification 
device 1 0 first performs the calculation (8). Both the 
exponent E and the modulus n are stored in the 

20 access ticket public key storing means 101, and the 
response R is stored' in the response storing means 
105. 

R E mod n (8) 

25 

Finally, the verification means 106 examines 
the relation (9). 

30 C mod n = R E mod n . (9) 

If the relation (9) holds, the verification means 
invokes the execution means 107. The execution 
means 107 provides a user with utilities that he/she 
35 wanted to access to. Otherwise, it invokes the error 
trapping means 108. The error trapping means 108 
may deny user access by terminating the execu- 
tion. 

40 Second Embodiment 

A second embodiment to be described is the same 
as the first embodiment regarding, the definition of an 
access ticket t and the function of the proving device. 

45 However, the verification device works differently. The 
difference in the roles between challenging data C and 
a response R causes the difference in the function 
between the two embodiments: in the first embodiment, 
a response R is encryption of a random challenging 

so data C; in the second embodiment, a response R will be 
decryption of challenging data C which is encryption of 
some other meaningful data. 

Fig. 5 depicts the constitution of devices of the sec- 
ond embodiment, and Fig. 6 depicts flow of data. A ver- 

55 rfication device 10 comprises the following means: an 
access ticket public key storing means 101; a random 
number generation means 102; a random number stor- 
ing means 103; a response storing means 105; a rand- 
omizing means 121; a challenge seed storing means 
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122; a de -randomizing means 123; and an execution 
means 310. A proving device 11 comprises the follow- 
ing means: a challenging data storing means 1 1 1 ; a first 
calculation means 102; an access ticket storing means 
1 1 3; a second calculation means 1 14; a user identifying 5 
information storing means 1 1 5; and a response genera- 
tion means 1 16. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. '0 



device 11 calculates an intermediate result FT 
according to the relation (12). 

R' = C 1 mod n (12) 

In course of calculation, the means uses the 
access ticket t stored in the access ticket storing 
means 113. 

4. The second calculation means 1 14 of the proving 
device 11 calculates a differential S according to 
the relation (13). 

S = C e mod n (13) 

In course of calculation, the means uses the 
user identifying information e stored in the user 
identifying information storing means 1 15. 

5. Receiving the intermediate result R' and the dif- 
ferential S from the first calculation means 112 and 
the second calculation means 114, the response 
generation means 116 of the proving device calcu- 
lates a response R according to the relation (14). 

R = R'Smod n (14) 

6. The proving device 11 returns the generated 
response R to the response storing means 307 of 
the verification device 10. 

7. The de-randomizing means 123 of the verifica- 
tion device 10 calculates K' according to the relation 
(15). 

K' = r^R mod n (15) 



In course of calculation, the means uses the 
random number r stored in the random number 
storing means 103 and the response R stored in 
the response storing means 105. Note that the val- 
ues K' and K are identical with each other, if and 
only if the proving device 11 calculated the 
response R based on a right pair of an access ticket 
t and a user identifying information e. 

Finally, the de-randomizing means 123 sends 
K* to the execution means 310, and the execution 
means 310 executes predefined procedures using 
this given K\ The execution means 310 is designed 
so that it works properly only when K* is identical 
with K; otherwise it fails to work. 

The following paragraphs describes several exam- 
ples of implementation of the execution means 310. 

1. Fig. 7 depicts a first example. A memory means 
310 a of the execution means 310 retains the data 
K. Receiving K' from the de-randomizing means 
123, a comparison means 310b directly examines 



1 . The verification device 10 is invoked by a user. 

2. The verification device 10 sends challenging 
data C and a modulus n to the challenging data 
storing means 1 1 1 of the proving device 1 1 . The js 
modulus n is stored in the access ticket public key 
storing means 101. On the other hand, challenging 
data C is generated by carrying out the following 
steps: the random number generating means 102 
generates a random integer r so that r and the mod- 20 
ulus n are relatively prime (gcd (r, n) = 1 ); the ran- 
dom integer r is stored in the random number 
storing means 103; the randomizing means 121 
generates challenging data C according to the rela- 
tion (10). 25 

C = r E C mod n (10) 



The integer C is stored in the challenge seed 30 
storing means 122, and satisfies the relation (11) 
for some data K. 

C'=K E modn (11) 

35 

The exponent E (access ticket public key) and 
the modulus n are both stored in the access ticket 
public key storing means 101. 

The verification device ip retains encryption C 
of K instead of K itself. In fact, C is RSA encryption <o 
of K with a public key E and a modulus n. This has 
an advantage in the viewpoint of security: the data 
K crucial for authentication procedures never leaks 
from the verification device 10, The randomness of 
r also plays an important role: if r were identical to 45 
some secret constant, the challenging data C would 
be encryption of the data K up to a constant coeffi- 
cient, and therefore the response which the proving 
device 1 1 generates would be K up to a constant 
coefficient; thus, constant r would allow replay so 
attacks since communication between the verifica- 
tion device 10 and the proving device 1 1 would be 
always identical. In this embodiment, by generating 
challenging data C so that it is dependent on a ran- 
dom number r (see the relation (10)), communica- ss 
tion between the verification device 10 and the 
proving device 1 1 occurs with variation, and there- 
fore attempts of replay attacks become hopeless. 
3. The first calculation means 112 of the proving 
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the equality K = K" . If the equality does not hold, 
the execution means 310 suspends its performance 
immediately. Otherwise, the execution means 310 
continues its performance and provides users with 
utilities. This example includes the disadvantage 5 
caused from the fact that the data K critical for 
authentication procedures appears as it is in the 
device; when a computer program to be installed 
and executed on a user's PC or workstation is 
implemented on the execution means 310, it is not w 
impossible for a user to find out the value K by ana- 
lyzing the code of the application program. The 
value K is crucial, because, if once the user knows 
the value of K, and further if he/she can predict ran- 
dom number sequences to be generated by the 75 
random number generation means 102, he/she can 
construct a device simulating the proving device 10 
without any of an access ticket and a user identify- 
ing information e. In other words, anybody could 
pass the authentication check by the verification 20 
device 10 with this simulator, whether he/she is 
authorized or not. 

2. Fig. 9 depicts a second example. In this example, 
a memory means 310a retains h(K), instead of K, 
which is a value obtained by applying a one-way 25 
hash function h to K. A significant property of one- 
way hash functions is that it is computationally 
impossible to calculate x satisfying y = h(x) given y. 
Receiving K* from a de-randomizing means 123, a 
hashing means 310c calculates h(K') which is the 30 
result of applying the one-way hash function h to K\ 

Then, the comparison means 3 10b examines 
the identity of this h(K* ) and the value stored in the 
memory means 310a (= h(K)). Compared with the 
first example, this example is safer since there is no 35 
effective means to find out the critical data K: even 
though a user succeeded in analyzing the code of 
the program constituting the execution means 310, 
he/she couldn't find out any more than the value of 
h(K); due to the property of one-way hash func- 40 
tions, it is computationally impossible to calculate K 
given h(K). However, when the execution means 
310 is implemented as a computer program, the 
comparison means 310b may be represented as an 
if-clause. If the verification device is further as 
assumed to be executed on a user's PC or worksta- 
tion, a user may have a chance to modify the code 
so that the if-clause shall be always skipped. 

Therefore, the implementation of the this exam- 
ple is not safe enough, in particular, if the execution so 
means 310 is implemented as a computer program 
to be executed on a user's PC or workstation. 

3. Fig. 1 1 depicts a third example. This time, protec- 
tion is applied such that execution of the program of 

the execution means 310 becomes impossible by ss 
encrypting a portion or the whole of the code of the 
program. The encrypted code is stored in the chal- 
lenge seed storing means 122 as a seed C for 
challenging data C. More precisely, the crucial data 



K is program code to be encrypted, and C is RSA 
encryption of the code K with a public key E and a 
modulus n (C = KE mod n ). Both E and n are the 
values stored in the access ticket public key storing 
means 101. The execution means 310 includes a 
code storing means 31 Od. a code loading means 
31 Oe and a code execution means 31 Of. The code 
loading means 31 Oe feeds K\ which the code stor- 
ing means 31 Od received from the de-randomizing 
means 123, to the code execution means 31 Of. 
Only when K' is identical with K, the code fed to the 
code execution means 31 Of is meaningful as a part 
of the program of the execution means 310. In the 
following, a more detailed description of the compo- 
sition is provided. Consider the case where the exe- 
cution means 310 is implemented as a computer 
program executed on a user's PC or workstation. 
The code storing means 31 Od is a specified region 
within a memory of a user's PC. 

The code execution means 31 Of comprises the 
CPU and OS of the PC. The CPU and OS, cooper- 
. ating with each other, fetch instructions form a cer- 
tain predefined region within the memory space 
(called program region), and executes those 
instructions one by one. Generally speaking, a 
meaningful chunk of instructions is called a pro- 
gram, and a program is located within the program 
region. The entity of the code loading means 31 Oe 
is a part of the program constituting the execution 
means 310, and it is to be executed atfirst when the 
execution means 310 is invoked. When invoked, the 
code loading means 31 Oe orders the code execu- 
tion means 31 Of to copy the content stored in the 
code storing means 310d onto a specified area 
within the program region, and then orders the code 
execution means 31 Of to execute the copied 
sequence of instructions by issuing a JMP com- 
mand, for example. 

Thus, since a part or the whole of the code of 
the program of the execution means 310 is 
encrypted, and further since it is decrypted tempo- 
rarily only when the verification device 10 and the 
proving device 1 1 cooperate with each other prop- 
erly, the execution means 310 is much safer than in 
the cases of the preceding two examples: even 
though a user succeeded in analyzing the program, 
he/she couldn't obtain the missing code K at all; 
modifying the code of the program without the 
knowledge about K is definitely no use. 
4. Fig. 13 depicts a fourth example. This example is 
substantially the same as the third example except 
that K is the encryption key used in encrypting code 
of the program constituting the execution means 
310, while K is the code itself in the previous exam- 
ple. Since the code to be encrypted may be of large 
size, according to the composition of the third 
example, the size of K (namely, that of C and C) 
may be large enough to make the performance of 
the verification device 10 and the proving device 1 1 
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worse. In contrast, according to the composition of 
the fourth example, the size of K (namely, that of C) 
remains unchanged irrespective of the size of the 
program code to be encrypted: the size of K is 
determined by the cipher algorithm to be used; if 5 
DES (Data Encryption Standard) is used. K is 
always 64 (56) bits long even when the size of the 
code to be encrypted is measured by Mbyte. 

The execution means 310 comprises an 
encrypted code storing means 310g, a decryption to 
means 3l0h, a code loading means 3101, and code 
execution means 31 Of. Receiving the data K" from 
the de-randomizing means 123, the decryption 
means 31 Oh decrypts the content stored in the 
encrypted code storing means 310g. In the process 75 
of decryption, K' is used as a decryption key. The 
code loading means 3101 loads the output of the 
decryption means 31 Oh, which is decrypted code if 
K' is identical with K, onto a specified area within 
the program region, and then orders the execution 20 
means 31 Of to execute the loaded code. 



Third Embodiment 

In a third embodiment, the definition of an access 25 
ticket is given as the relation (16). 

t=D+F(n,e) (16) 

The following bulleted paragraphs illustrate the 30 
symbols appearing in the relation (16). 

An integer n is an RSA modulus, hence, a product 
of two very large prime numbers p and q ( n = pq ). 
<t> (n) denotes the Euler number of n, hence, a prod- 35 
uctoftwo integers p-1 andq-1 ($ (n) = (p-1)(q-1) ). 
A user identifying information e is an integer allo- 
cated to each user. The user identifying information 
e is unique to each user: 

A different user identifying information is allocated 40 
to a different user. 

An access-ticket secret key D is the private key of 
an RSA public key pair. Since the assumed modu- 
lus is n, D satisfies the relation (17). 

45 

gcd(D, 4> (n)) = 1 (17) 

In the above, gcd(x, y) denotes the greatest com- 
mon divisor of two integers x and y. The existence 
of an integer E satisfying the relation (18), which is so 
called, an access-ticket public key, is derived form 
the relation 17. 

ED mod ()> (n) = 1 (18) 

55 

A two variable function F(x, y) is an arbitrary colli- 
. sion-free function. Practically, a collision-free func- 
tion may be constructed using a one-way hash 
function h as the relation (19). 



F(x, y) = h(x I y) (19) 

Figs. 15 and 16 are for depicting this embodiment: 
Fig. 15 depicts the constitution of the devices of this 
embodiment; Fig. 16 depicts flow of data. 

In Fig. 15, a proving device 11 comprises a chal- 
lenging data storing means 111. a first calculation 
means 112, an access ticket storing means 113, a sec- 
ond calculation means 114, a user identifying informa- 
tion storing means 115, a response generation means 
1 16, and an exponent generation means 130. A verifica- 
tion device 10 in this embodiment may be identical with 
that in any of the first embodiment (shown in Fig. 3) or 
the second embodiment (shown in Fig. 5). 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 

1. The verification device 10 is invoked by a user. 

2. The verification device 10 sends challenging 
data C and a modulus n to the challenging data 
storing means 1 1 1 of the proving device 1 1 . The 
modulus n is stored in the access ticket public key 
storing means 101, and the challenging data C is 
generated in one of the manners defined in the first 
embodiment or the second embodiment: C is iden- 
tical with either r E mod n or r E C mod n. 

3. The first calculation means 112 of the proving 
device 1 1 calculates an intermediate result R' 
according to the relation (20). An access ticket t to 
be used is stored in the access ticket storing means 
113. 

R'= C l mod n (20) 

4. The exponent generation means 130 calculates 
F(n, e) by applying the collision-free function F to 
the modulus n, stored in the challenging data stor- 
ing means 111, and the user identifying information 
e, stored in the user identifying information storing 
means 115. 

F(n, e) (21) 

5. Receiving the result from the exponent genera- 
tion means 130, the second calculation means 114 
of the proving device 1 1 calculates a differential S 
according to the relation (22). 

S = C F{n ' e) mod n (22) 

6. Receiving R' and S from the first calculation 
means 112 and the second calculation means 114, 
the response generation means 116 of the proving 
device calculates a response R according to the 
relation (23). 

R = R'S' 1 modn (23) 
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In the relation (23), S" 1 denotes the reciprocal 
of S under the modulus n. Hence, S and S" 1 satisfy 
the relation (24). 

SS" 1 mod n = 1 (24) 

7. The proving device 11 returns the generated 
response R to the response storing means 105 of 
the verification device 10. 

8. The verification device 10 examines the 
response received from the proving device 1 1 . 

Fourth Embodiment 

In a fourth embodiment, a proving device 1 1 com- 
prises a computer program executed on a user's PC or 
workstation, a smart card or PC card (PCMCIA card) 
attachable to the user's PC or workstation, and a pro- 
gram executed on this smart card or PC card. 

As is obvious from the explanation of the former 
three embodiments, a user identifying information e, 
stored in a user identifying information storing means 
115, must be kept secret to others. Furthermore, 
observing process of execution of a second calculation 
means 114, which needs e as an input to itself, may 
lead to leak of e. The same situation applies to an expo- 
nent generation means 130. Consequently, in practical 
use, the user identifying information storing means 115, 
the second calculation means 114 and the exponent 
generation means 130 should be protected by some 
means against attempts to pry out some crucial secret 
out of them. 

One solution is confining the crucial part of the 
proving device 1 1 within hardware equipped with func- 
tion to prevent its inside from being observed or tam- 
pered with by unauthorized means. Generally, such 
hardware is called tamper-resistant hardware. 

In creating the tamper-resistant hardware, it is pos- 
sible to use the technology disclosed in Patent Number 
1 ,863,953, Patent Number 1 ,860,463 or Japanese Laid- 
Open Patent Publication 3-100753, for example. In Pat- 
ent Number 1,863,953, an enclosure composed of a 
plurality of cards having multi-layered conductive pat- 
terns is provided surrounding an information memory 
medium. Memory information is destroyed when the 
conductive pattern which is detected differs from an 
expected pattern. 

In Patent Number 1,860,463; a detection circuit 
composed of an integration circuit or the like is provided 
surrounding an information memory medium in addition 
to a conductive winding being formed, and through this, 
when there is infiltration to the electronic circuit region, 
fluctuations in electromagnetic energy are detected and 
memory information is destroyed. 

In Japanese Laid-Open Patent Publication 3- 
100753, an optical detector is provided within hardware, 
and the optical detector detects external light which 
enters when a force is applied which destroys the hard- 



ware or punctures the hardware, and a memory 
destruction device resets memory information. 

Further, choosing tamper-resistant hardware with 
portability such as a smart card or PC card may provide 

5 users with additional merits. Among information dealt 
with by a proving device 1 1 , only an access ticket and a 
user identifying information are unique to an individual 
user. Hence, for example, it may be useful to confine a 
user identifying information storing means 115, access 

w ticket storing means 113, a second calculation means 
1 14 and exponent generation means 130 within a smart 
card or PC card, and implement the rest of the proving 
device 10 as a program to be executed on an arbitrary 
PC or workstation; a user can use an arbitrary PC or 

is workstation, assuming that the program is installed on 
it, as his/her proving device only by inserting his/her 
own smart card or PC card into the computer. 

Fig. 17 depicts constitution of a proving device 1 1 of 
the first and second embodiments when a user identify* 

20 ing information storing means 115 and a second calcu- 
lation means 1 14 are confined within a smart card. 

Fig. 18 depicts constitution of a proving device 1 1 of 
the third embodiment when a exponent generation 
means 1 30 in addition to a user identifying information 

25 storing means 114 and a second calculation means 114 
is confined within a smart card. 

For both Figs. 17 and 18, a card-side l/F means 141 
within a smart card is an interface to a host computer for 
communication between a host computer and the smart 

30 card. More practically, the card-side l/F means 141 
comprises buffer memory and a communication pro- 
gram, 

A host-side l/F means 140, which is a part of a host 
computer, is the counter part of the card-side l/F means 
35 141. Both l/F means, cooperating with each other, 
transfer messages from the host computer to the smart 
card, and vice versa. 

The following numbered paragraphs describe the 
function of the means constituting the devices. 

40 

1. The verification device 10 is invoked by a user, 

2. The verification device 10 sends challenging 
data C and a modulus n stored in the access ticket 
public key storing means 101 to the challenging 

45 data storing means 1 1 1 of the proving device 1 1 . 

3. The host-side l/F means 140 of the proving 
device 10 sends the challenging data C and the 
modulus n to the card-side l/F means 141 within the 
smart card. 

so 4. The access ticket searching means 142 retrieves 
an access ticket t corresponding to the modulus n 
that is stored in the challenging data storing means 
111. As shown before, in any of the former three 
embodiments, the definition of an access ticket t 

55 involves a modulus n (t = D - e +u>.<|> (n) or 
t = D + F(n, e) ). In the access ticket storing means 
113-, zero or "more access ticket are stored, and 
each access ticket is indexed with the modulus that 
was used in generating the access ticket. 
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5. The first calculation means 1 1 2 of the proving 
device 1 1 calculates an intermediate result FT 
according to the relation (25). 
An access ticket t is stored in the access ticket stor- 
ing means 113. 



FT = C 1 mod n 



(25) 



6. The host-side 1/F means 140 issues a require- 
ment for a differential S to the card-side l/F means 
1 41 . A response which the host-side l/F means 1 40 
receives is a differential S of one of the following 
forms: if the access ticket t and the means within 
the smart card were implemented in the manner of 
the first and second embodiments, the differential S 
satisfies the relation (26); if the access ticket t and 
the means within the smart card were implemented 
in the manner of the third embodiment, the differen- 
tial S satisfies the relation (27). 



S = C e mod n 



S = C F(n ' e) modn 



(26) 
(27) 



7. The response generation means 1 16 of the prov- 
ing device 1 1 calculates a response R according to 
either the relation (28) or (29): if the access ticket t 
and the means within the smart card were imple- 
mented in the manner of the first and second 
embodiments, the relation (28) shall be applied; if 
the access ticket t and the means within the smart 
card were implemented in the manner of the third 
embodiment, the relation (29) shall be applied. 



have a number of access tickets. 

The stated function of the access ticket searching 
means 142 would release a user from paraphernalia of 
selecting a correct access ticket by himself. 

c 

Fifth Embodiment 

In a fifth embodiment, the PohJig-Hellman asym- 
metric key cryptography is used instead of the RSA 
to public key cryptography. 

In this embodiment, the definition of an access 
ticket t is given as the relation (30). 
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t = D + F(p. e) 



(30) 



The following bulleted paragraphs illustrate the 
symbols appearing in the relation (30). 

An integer p is a very large prime number. 
A user identifying information e is an integer allo- 
cated to each user. The user identifying information 
e is unique to an individual user: a different user 
identifying information is allocated to a different 
user. 

An access ticket secret key D is one component of 
a Pohlig-Hellman asymmetric key pair. Since the 
assumed modulus is p, D satisfies the relation (31). 



gcd(D, p-1) = 1 



(31) 



R = R'S mod n 



(28) 



35 



In the above, gcd(x, y) denotes the greatest com- 
mon divisor of two integers x and y. The existence of an 
integer E satisfying the relation (32), which is called an 
access-ticket public key, is derived from the relation 
(31). 



R = R'S * mod n 



(29) 



ED mod p-1 



(32) 



8. The proving device 11 returns the generated 
response R to the response storing means 307 of <o 
the verification device 10. 

In this embodiment, it is possible to calculate the 
intermediate result R* and the differential S concurrently, 
because the former is calculated within the host compu- 4S 
ter and the tatter is within the smart card. Obviously, this 
concurrent calculation reduces the total time which the 
proving device 1 1 needs for calculating a response to a 
received challenging data. 

Further, in this embodiment, the access ticket stor- so 
ing means 113 may retain more than one access tick- 
ets, and the access ticket searching means 142 
retrieves an appropriate access ticket using a modulus 
issued by the verification device 10 as a key for retrieval. 
Basically, different verification device, which may be ss 
embedded within a different application program or 
server program, should assume a different modulus. 
Therefore, a user who want to access to more than one 
application programs or server programs is obliged to 



A two variable function F(x, y) is an arbitrary colli- 
sion-free function. Practically, a collision-free func- 
tion may be constructed using a one-way hash 
function h as the relation (33). 



F(x, y) = h(x | y) 



(33) 



Figs. 20 and 21 are for depicting this embodiment: 
Fig. 20 depicts the constitution of the devices of this 
embodiment; Fig. 21 depicts flow of data. In Fig. 20, a 
proving device 41 comprises the following means: a 
challenging data storing means 411; a first calculation 
means 412; an access ticket storing means 413; a sec- 
ond calculation means 414; a user identifying informa- 
tion storing means 415; a response generation means 
416; and an exponent generation means 430. On the 
other hand, a verification device 40 comprises the fol- 
lowing means/ a key storing means 401 ; a random 
number generation means 402; a random number stor- 
ing means 403; a response storing means 405; a rand- 
omizing means 421; a challenging seed storing means 
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422; a de-randomizing means 423; and an execution 
means 310. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 

1 . The verification device 40 is invoked by a user. 

2. The verification device 40 sends challenging 
data C and a modulus p to the challenging data 
storing means 411 of the proving device 41. The 
modulus p is stored in the key storing means 401. 
In this embodiment, the challenging data C is 
assumed to be generated in a manner similar to 
that in the second embodiment. However, it is easy 
to construct another embodiment such that chal- 
lenging data C is generated in a manner similar to 
that in the first embodiment. The challenging data C 
in this embodiment is generated by carrying out the 
following steps: the random number generating 
means 402 generates a random integer r so that r 
and the modulus p are relatively prime 
(gcd(r, p) = 1 ); the random integer r is stored in the 
random number storing means 403; and the rand- 
omizing means 121 generates challenging data C 
according to the relation (34). 

C = r E C modp (34) 

The integer C is stored in the challenge seed 
storing means 422, and satisfies the relation (35) 
for some data K. 

C* = K E mod p (35) 

The exponent E (access ticket public key) and 
the modulus p are both stored in the key storing 
means 401. 

3. The first calculation means 412 of the proving 
device 41 calculates an intermediate result R' 
according to the relation 36. 

An access ticket t to be used is stored in the access 
ticket storing means 1 1 3. 

R' = C 1 mod p (36) 

4. The exponent generation means 430 calculates 
F(p, e) by applying the collision-free function F to 
the modulus p, stored in the challenging data stor- 
ing means 111, and the user identifying information 
e, stored in the user identifying information storing 
means 415. 

F(p. e) (37) 

5. Receiving the result from the exponent genera- 
tion means 430, the second calculation means 414 
of the proving device 41 calculates a differential S 
according to the relation (38). 



S = C F(p ' e) mod p (38) 

6. Receiving R' and S from the first calculation 
means 412 and the second calculation means 414, 

5 the response generation means 416 of the proving 

device 41 calculates a response R according to the 
relation (39). 

R = R'S' 1 modp (39) 

w 

In the relation (39), S* 1 denotes the reciprocal 
of S under the modulus p. Hence, S and S" 1 satisfy 
the relation (40). 

75 

SS* 1 modp = 1 (40) 

7. The proving device 41 returns the generated 
response R to the response storing means 405 of 

20 the verification device 40. 

8. The de-randomizing means 423 of the verifica- 
tion device 40 calculates K* according to the relation 
(41). 

25 K = r" 1 Rmodp (41) 

In course of calculation, the means uses the 
random number r stored in the random number 
30 storing means 403 and the response R stored in 
the response storing means 405. 

Sixth Embodiment 

35 A sixth embodiment is substantially similar to the 
third embodiment except that the EIGamal public key 
cryptography is used this time instead of the RSA public 
key cryptgraphy. In this embodiment, the definition of an 
access ticket t is given as the relation (42). 

40 

t = X + F(p, e) (42) 

The following bulleted paragraphs illustrate the 
symbols appearing in the relation (42). 

45 

An integer p is a very large prime number. 
A user identifying information e is an integer allo- 
cated to each user. The user identifying information 
is unique to an individual user: a different user iden- 
50 tifying information is allocated to a different user. 

Let (X, Y) be an arbitrary EIGamal asymmetric key 
pair assuming p is the modulus. Therefore the rela- 
tion (43) is satisfied. 

55 Y = G x mod p (43) 

In the relation (43), G denotes an integer represent- 
ing a generator of the multiplicative group of the finite 
field of order p. 
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Equivalent!^ G satisfies the relations (44) and (45). 

G > 0 (44) 

min { x>0 | G X = 1 mod p} = p - 1 (45) 

X is called an access ticket secret key. while Y is 
called an access ticket public key. 
A two variable function F(x, y) is an arbitrary colli- 
sion-free function. Practically, a collision-free func- 
tion may be constructed using a one-way hash 
function h as the relation (46). 

F(x, y) = h(x | y) (46) 

Figs. 22 and 23 are for depicting this embodiment: 
Fig. 22 depicts the constitution of the devices of this 
embodiment; Fig. 23 depicts flow of data. 

In Fig. 22, a proving device 51 comprises the follow- 
ing means: a challenging data storing means 51 1 ; a first 
calculation means 512; an access ticket storing means 
513; a second calculation means 514; a user identifying 
information storing means 515; a response generation 
means 516; and an exponent generation means 530. 
On the other hand, a verification device 50 comprises 
the following means: an access ticket public key storing 
means 501 ; a random number generation means 502; a 
random number storing means 503; a response storing 
means 505; a randomizing means 521; a challenge 
seed storing means 522; a de-randomizing means 523; 
and an execution means 310. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 

1 . The verification device 50 is invoked by a user. 

2. The verification device 50 sends a pair (u, C) of 
challenging data and a modulus p to the challeng- 
ing data storing means 51 1 of the proving device 
51. The modulus p is stored in the access ticket 
public key storing means 501. On the other hand, 
the challenging data u and C is generated as fol- 
lows. The first component u is stored in the chal- 
lenge seed storing means 522. and satisfies the 
relation (47) for some secret random number z. 

u = G 2 mod p (47) 



In the challenge seed storing means 522, one 
more seed C is stored. C* satisfies the relation (48) 
for some crucial data K. (48) C = Y Z K mod p 

Using this C as a seed, the other component C 
is generated as follows. The random number gener- 
ating means 502 generates a random integer r so 
that r and the modulus p are relatively prime 
(gcd(r. p) = 1 ); the random integer r is stored in the 
random number storing means 503; the randomiz- 
ing means 521 generates challenging data C 



according to the relation (49)- 

C = rC mod p (49) 

5 3. The first calculation means 512 of the proving 

device 51 calculates an intermediate result S 
according to the relation (50). 
An access ticket t to be used is stored in the access 
ticket storing means 513. 

w 

S = u 1 mod p (50) 

4. The exponent generation means 530 calculates 
F(p ( e) by applying the collision-free function F to 

75 the modulus p, stored in the challenging data stor- 
ing means 51 1 , and the user identifying information 
e, stored in the user identifying information storing 
means 515. 

so F(p,e) (51) 

5. Receiving the result from the exponent genera- 
tion means 530, the second calculation means 514 
of the proving device 51 calculates a differential S* 

25 according to the relation (52). 

S" = u Ftp ' e) mod p (52) 

6. Receiving S and S' from the first calculation 
30 means 512 and the second calculation means 514, 

the response generation means 516 of the proving 
device 51 calculates a response R according to the 
relation (53). 

35 R = S" 1 S*Cmodp (53) 



In the relation (53), S' 1 denotes the reciprocal 
of S over the modulus p. Hence, S and S" 1 satisfy 
40 the relation (54). 

SS° mod p = 1 (54) 

7. The proving device 51 returns the generated 
45 response R to the response storing means 505 of 

the verification device 50. 

8. The de-randomizing means 523 of the verifica- 
tion device 50 calculates K* according to the relation 
(55). 

50 

K = r' 1 Rmod p (55) 

In course of calculation, the means uses the 
55 random number r stored in the random number 
storing means 503 and the response R stored in 
the response storing means 505. 

The straightforward implementation of the above 
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constitution would involve the following problem: use of 
a common pair of seeds for challenging data (u, C) for 
more than one occurrences of authentication allows an 
attacker to construct a device which emulates the prov- 
ing device 1 1 without the user identifying information or 
the access ticket. To construct such an emulator, 
H = RC-1 mod p is recorded first where C is the chal- 
lenging data at the first occurrence of authentication 
and R is the response to C calculated by the proving 
device 11. The emulator retains this H instead of the 
user identifying information e and the access ticket t. 
and on arbitrary input (u, C) issued by the verification 
device 10, returns to a response R calculated according 
to the relation R = HC mod p . Thus, the verification 
device 10 should have pairs of seeds (u 3 , C) as many 
as necessary, and should use distinct pair for distinct 
occurrence of authentication (Note that k for 
u = G 2 mod p is a random number). 

Seventh Embodiment 

A seventh embodiment exploits the EIGamal signa- 
ture rather than the RSA public key cryptography in the 
first three embodiments or the EIGamal public key cryp- 
tography in the sixth embodiment. 

In this embodiment, the definition of an access 
ticket t is given as the relation (56). 

t = X + F(p, e) (56) 

The following bufleted paragraphs illustrate the 
symbols appearing in the relation (56). 

An integer p is a very large prime number. 
A user identifying information e is an integer allo- 
cated to each user. The user identifying information 
e is unique to an individual user: a different user 
identifying information is allocated to a different 
user. 

Let (X, Y) be an arbitrary EIGamal asymmetric key 
pair assuming p is the modulus. Therefore the rela- 
tion (57) is satisfied. 

Y = G X mod p (57) 

In the relation (57), G denotes an integer represent- 
ing a generator of the multiplicative group of the finite 
field of order p. 

Equivalent!^ an integer G satisfies the relations 
(58) and (59). 

G > 0 (58) 

min { x>0 | G X = 1 mod p } * p - 1 (59) 

X is called an access ticket secret key. while Y is 
called an access ticket public key. 

A two variable function F(x, y) is an arbitrary colli- 



sion-free function. Practically, a collision-free func- 
tion may be constructed using a one-way hash 
function h as the relation (60) shows. 

5 F(x, y) = h(x | y) (60) 

Figs. 24 and 25 are for depicting this embodiment: 
Fig. 24 depicts the constitution of the devices of this 
embodiment; Fig. 25 depicts flow of data. 

io In Fig. 24, a proving device 61 comprises the follow- 
ing means: a challenging data storing means 611: a 
random number generation means 612: a first calcula- 
tion means 613; a second calculation means 614; an 
access ticket storing means 615; and a user identifying 

T5 information storing means 616. On the other hand, ver- 
ification device 60 comprises the following means: an 
access ticket public key storing means 601; a random 
number generation means 602; a random number stor- 
ing means 603; a response storing means 605; a verrfi- 

20 cation means 606; a execution means 607; and an error 
trapping means 608. 

By the following numbered paragraphs, the function 
of the means constituting the devices will be described 
step by step. 

25 

1 . The verification device 60 is invoked by a user. 

2. The verification device 60 sends challenging 
data C, a modulus p and a generator G to the chal- 
lenging data storing means 61 1 of the proving 

30 device 61 . The modulus p and the generator G are 
stored in the access ticket public key storing means 
601. On the other hand, the challenging data u and 
C are generated as follows: the random number 
generation means 602 generates a random integer 

35 r so that r and the modulus n are relatively prime 
(gcd(r, n) = 1 ); the generated random integer r is 
stored in the random number storing means 603; 
finally, the random number generation means 602 
sets the value of C to r. As stated later in more 

40 detail, the response which the proving device 61 is 
to respond to the verification device 60 is EIGamal- 
signature of r with X as the signature key and p as 
the modulus. 

3. The random number generation means 612 of 
45 the proving device 61 generates a random integer k 

so that k and p are relatively prime (gcd(k, p) = 1 ). 
Receiving the random integer k from the random 
number generation means 612 and the modulus p 
and the generator G from the challenging data stor- 
so ing means 61 1 , the first calculation means 61 3 cal- 
culates a first component R of a response 
according to the relation (61). 

R = G k mod p (61) 

55 

■ Concurrently, the second calculation means 
614 calculates a second component S of a 
response according to the relation (62). 
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S = (C * R (t - F(p, e)))k* 1 mod p - 1 (62) 

The access ticket t is stored in the access ticket 
storing means 615, and the modulus p and the 
challenging data C are stored in the challenging 
data storing means 61 1 . 

4. The proving device 61 returns the generated 
response R to the response storing means 605 of 
the verification device 60. 

5. The verification means 606 of the verification 
device 60 examines the relation (63). 

G r = Y R R S modp (63) 

The random integer r is stored in the random 
number storing means 603; the response pair (R, 
S) is stored in the response storing means 605; the 
modulus p. the access ticket public key Y and the 
generator G are all stored in the access ticket public 
key storing means 601. 

Eighth Embodiment 

An eighth embodiment provides an example of 
specification for ways how to generate access tickets 
safely. 

In any case of the previous embodiments, access 
tickets are calculated as output of a predefined function 
on input of specific secret information, namely user 
identifying information and access ticket secret keys. 
Since leak of that secret information threatens the 
safety of the entire scheme of authentication, a safe 
device may be necessary in generating access tickets. 

Such a device is required to provide the function 
which absolutely prevents leakage of the secret infor- 
mation contained within it or results of calculations car- 
ried out within it. 

One of the simplest ways to constitute such a safe 
device is to implement services of generating and issu- 
ing access ticket to users on an isolated computer kept 
safe from any attempts at illegal accesses by users: in 
order to protect that server computer against physical 
accesses by users, the computer shouricMae placed in a 
room entry into which is severely C(^ntrQl|ed; further, if 
the server computer is networked vmjjj&s&s* PCs and 
access tickets are issued to users on network, the threat 
of attacks via network should be taken into account; in 
protecting the server computer from those network 
attacks, the firewall technology (for details see "Building 
Internet Firewalls" by D. Brent Chapman and Elizabeth 
D. Zwicky, O'Reilly & Associates, Inc.) may be useful. 

As shown in the previous embodiments, an access 
ticket is generated so that only the user to whom the 
ticket is issued can use it. Speaking more accurately, a 
user may succeed in authentication procedure between 
a verification device and a proving device if and only if 
he is able to feed to the proving device both an access 
ticket and user identifying information based on which 
the access ticket has been generated. 



Moreover, access tickets stated in the previous 
embodiments satisfy a stricter standard of safety: there 
is no way to forge an access ticket or to construct a 
device which emulates the proving device even though 
5 an attacker is assumed to be able to collect an arbitrary 
number of access tickets issued by legitimate access 
ticket issuers. 

The fact that access ticket satisfies the above 
standard implies that access tickets are safe enough to 
w be conveyed to users by relatively insecure means like 
electronic mails on Internet. 

Ninth Embodiment 

15 A ninth embodiment uses a composition method for 
an access ticket and user identifying information differ- 
ing from those of the previous embodiments: this 
method is different from those of the previous embodi- 
ments in that the public information associated with user 

20 identifying information is used instead of the user iden- 
tifying information itself in generating an access ticket. 

Therefore, according to the method stated below, a 
safe access ticket issuing server stated in the eighth 
embodiment is not necessary: a user is allowed to gen- 

25 erate an access ticket with a program executed on his 
own PC or workstation. That program doesn't contain 
any secret information or any secret algorithm. 

The identifying information of a user U is the private 
key du of an RSA public key pair. By (e Ut n u ) t the public 

30 key corresponding to the private key d y is denoted. 
Hence, n y = Pyqy for two distinct large prime num- 
bers pu and q U( and d y and e u are integers determined 
so as to satisfy the relations (64). 

35 1 ad u <(p u -1)(q u -1) (64) 

1 =e u <(p u - 1)(qu - 1) 

eu d u s 1 mod (Pu * 1 )fau • 1 ) 

40 

Hereafter, the condition that n v is at least as large 
as a constant N common to all users is further 
assumed. 

An access ticket for a user U is composed as fol- 
45 lows: the public key (E, n) of an RSA public key pair is 
taken to be the public key of the access ticket to be gen- 
erated; the private key D which is paired with this public 
key (E, n) is taken to be the secret key of the access 
ticket; when the prime factorization of n is n = pq , the 
so relations 65 is established; finally, the access ticket \ u is 
defined by the relation (66). 

1 =i D < N (65) 

55 DE - 1 mod (p - 1)(q - 1) 

t ,j = D e y mod n u (66) 

In the above composition, the unique security char- 
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acteristic information for authentication process is the 
private key D. Same as the cases in the previous 
embodiments, a user succeeds in authentication proce- 
dures if and only if he is able to prove that he has means 
to calculate a right response to challenging data issued 5 
to him by a verification device: the calculated response 
is right only when it is calculated based on the unique 
security characteristic information D. 

The composition method presented in this embodi- 
ment is characterized by the property that an access w 
ticket is encryption of the unique security characteristic 
information D and the user identifying information is the 
unique decryption key to obtain D from the access 
ticket. In addition, since the user identifying information 
is the private key of an RSA key pair, anybody who is 75 
allowed to know the public key paired with the private 
key can generate an access ticket for the user at will. 

Hereafter, the device composition and operation of 
f * the proving device 71 are described with reference to 

Fig. 26. 20 
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Tenth Embodiment 

.A tenth embodiment is substantially the same as 
the ninth embodiment, except that a response R is cal- 
culated using a symmetric key cipher instead of using 
the RSA public key cryptography as in the ninth embod- 
iment and an access ticket is RSA- encryption of the 
decryption key (same as the encryption key) D of the 
symmetric key cipher. As the encryption key to generate 
the access ticket, the public key (ey, rig-) and the RSA 
algorithm is used. 

When the encryption function of the symmetric key 
encryption is expressed as Encrypt (key, plain mes- 
sage: the output of this function being the cipher mes- 
sage of the plain message which is the second 
argument of the function) and the decryption function is 
expressed as Decrypt (key, cipher message: the output 
being the plain message corresponding to the cipher 
message which is the second argument of the function), 
the challenging data C is defined by relation (69). 



1 . A verification device 1 0 sends challenging data C 
to a challenging data storing means 711 of a prov- 
ing device 71. 

2. A decryption key generation means 712 of the 25 
proving device 71 acquires user identifying informa- 
tion d(j which is stored in a user identifying informa- 
tion storing means 715 and an access ticket ty 
which is stored in an access ticket storing means 
713, and then calculates D' according to the rela- 30 
tion(67). 

D' = t u dU mod n u (67) 

3. On input of D' calculated by the decryption key 35 
generation means 712 and the challenging data C 
stored in the challenging data storing means 71 1 , a 
response generation means 714 of the proving 
device 71 calculates a response R according to the 
relation (68). The calculated response R is returned 40 
to the verification device 10. 

R = C D mod n (68) 

4. The verification device 10 verifies the legitimacy 45 
of the response R. 



The access ticket secret key D in the definition of 
the access ticket t u = D € v mod n u must be kept 
secret to the user U. Therefore, the user identifying so 
information storing means 713, the decryption key gen- 
eration means 712 and the response generation means 
714 are to be incorporated in a defense means 760 
which is a tamper-resistant hardware. 

The same as the cases of the previous embodi- 55 
ments, the verification device authenticates access 
rights of the user if and only if he has the "right pair of the 
ticket t u and the user identifying information e. 



C = Encrypt (D, K) (69) 

Furthermore, the access ticket tU is defined by the 
relation (70). 

tg » D eU modnu (70) 

Hereafter, the operation of the proving device 1 1 is 
described with reference to Fig. 26. 

1 . A verification device 10 sends challenging data C 
to a challenging data storing means 71 1 . 

2. A decryption key generation means 712 of the 
proving device 1 1 acquires user identifying informa- 
tion 6\j which is stored in a user identifying informa- 
tion storing means 715 and an access ticket ty 
which is stored in an access ticket storing means 
713, and then calculates D 1 according to the rela- 
tion (71). 

D' = t y dU mod n v (71) 

3. On input of D* calculated by the decryption key 
generation means 712 and the challenging data C 
stored in the challenging data storing means 71 1 , a 
response generation means 714 of the proving 
device 1 1 calculates a response R according to the 
relation (72), The calculated response R is sent 
back to the verification device 10. 

R = Decrypt (D* C) (72) 

4. The verification device 10 verifies the legitimacy 
of the response R. 

The foregoing description of preferred embodi- 
ments of this invention has been presented for pur- 
poses of illustration and description. It is not intended to 
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be exhaustive or to limit the invention to the precise form 
disclosed, and modifications and variations are possible 
in light of the above teachings or may be acquired from 
practice of the invention. The embodiments were cho- 
sen and described in order to explain the principles of 
the invention and its practical application to enable one 
skilled in the art to utilize the invention in various 
embodiments and with various modifications as are 
suited to the particular use contemplated- It is intended 
that the scope of the invention be defined by the claims 
appended hereto, and their equivalents. 

Claims 

1. A device for authenticating user's access rights to 
resources comprising: 

first memory means 111 for storing challenging 
data 18; 

second memory means 1 15 for storing unique 
identifying information of the user 16; 
third memory means 1 13 for storing proof sup- 
port information 13 which is a result of execut- 
ing predetermined computations to the user 
unique identifying information 16 and unique 
security characteristic information of the device 
14; 

response generation means 1 16 for generating 
a response 19 from the challenging data 18 
stored in the first memory means 111, the 
unique identifying information of the user 16 
stored in the second memory means 115, and 
the proof support information 13 stored in the 
third memory means 113; and 
verification means 106 for verifying the legiti- 
macy of the response 19 by verifying that the 
response 19, the challenging data 18 and the 
unique security characteristic information of 
the device 14 satisfy a specific predefined rela- 
tion. 

2. The device for authenticating user's access rights 
to resources of claim 1 further comprising: 

protect means 160 for preventing any data 
inside from being. observed or being tampered 
with from the outside, at least confining the 
second memory means 1 15 and the response 
generation means 116. 

3. The device for authenticating user's access rights 
to resources of claim 1 , wherein 

at least the second memory means 115 and 
the response generation means 1 16 are imple- 
mented within a small portable device such as 
a smart card. 

4. The device for authenticating user's access rights 



to resources of any of claims 1 through 3, wherein 

the response generation means 116 com- 
prises: 

s first calculation means 712 for replaying the 

unique security characteristic information of 
the device 14 by executing predetermined cal- 
culations to the unique identifying information 
of the user 16 stored in the second memory 

io means 115 and the proof support information 

13 stored in the third memory means 113; and 
second calculation means 714 for generating a 
response by executing predetermined calcula- 
tions to the challenging data 18 stored in the 

is first memory means 1 1 1 and the unique secu- 

rity characteristic information of the device 14 
replayed by the first calculation means 712. 

5. The device for authenticating user's access rights 
20 to resources of any of claims 1 through 3. wherein 

the response generation means 116 com- 
prises: 

third calculation means 1 12 for generating first 
25 intermediate information by executing prede- 

termined calculations to the challenging data 
stored in the first memory means and the proof 
support information stored in the third memory 
means; 

30 fourth calculation means 114 for generating 

second intermediate information by executing 
predetermined calculations to the challenging 
data 18 stored in the first memory means 1 1 1 
and the user unique identifying information 16 

35 stored in the second memory means 115; and 

fifth calculation means 116 for generating a 
response by executing predetermined calcula- 
tions to the first intermediate information gen- 
erated by the third calculation means 1 12 and 

40 the second intermediate information generated 

by the fourth calculation means 114. 

6. The device for authenticating user's access rights 
to resources of claim 5, further comprising: 

45 

protect means 160 for preventing any data 
inside from being observed or being tampered 
with from the outside, at least confining the 
second memory means 115 and the fourth cal- 
so culation means 1 14. 

7. The device for authenticating user's access rights 
to resources of claim 5, wherein 

55 at least the second memory means 115 and 

the fourth calculate- means 114 are imple- 
mented within a potable device such as a 
smart card. 
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8. The device for authenticating user's access rights 
to resources of any of claims 1 through 7, wherein 



9. The device for authenticating user's access rights 
to resources of any of claims 1 through 7, wherein 



10. The device for authenticating user's access rights 

to resources of any of claims 1 through 7, wherein 30 

the characteristic information of the device 14 
is the signature key of a digital signature func- 
tion, and 

the verification means 106 verifies the legiti- 35 
macy of the response by verifying that the 
response 1 9 generated by the response gener- 
ation means 1 16 is identical with the digital sig- 
nature for the challenging data, which is 
calculated with the signature key. 40 

11. The device for authenticating user's access rights 
to resources of claim 8 or 9, wherein 

the cipher function is of the asymmetric key 45 
cryptography, and 

the unique security characteristic information 
of the device 14 is one component of the key 
pair of the cipher function, 

50 

12. The device for authenticating user's access rights 
to resources of claim 1 1 , wherein 

the cipher function is of the public key cryptog- 
raphy, and 55 
the unique security characteristic information 
of the device 14 is the private key of the public 
key pair of the cipher function. 



1 3. The device for authenticating user's access rights 
to resources of claim 8 or 9, wherein 

the cipher function is of the symmetric key 
cryptography, and 

the unique security characteristic information 
of the device 14 is the common key of the 
cipher function. 

14. The device for authenticating user's access rights 
to resources of any of claims 1 through 13, further 
comprising: 

a proving device 11 having the first memory 
means 111, the second memory means 115, 
the third memory means 113 and the response 
generation means 1 16; and 
a verification device 10 having fourth memory 
means for storing the challenging data 18, fifth 
memory means 105 for storing the response 
19 and the verification means 106. wherein 
the verification device 10 transfers the chal- 
lenging data 18 stored in the fourth memory 
means to the first memory means 111 of the 
proving device 1 1 , the proving device 1 1 trans- 
fers the response 18 generated by the 
response generation means 116 to the fifth 
memory means 105 of the verification device 
10, and the verification means 106 of the verifi- 
cation device 10 verifies the legitimacy of the 
response stored in the fifth memory means 
105. 

15. The device for authenticating user's access rights 
to resources of claim 14, wherein 

the unique security characteristic information 
of the device 1 4 is an encryption key of a cipher 
function, 

the verification device 10 comprises random 
number generation means 102 for generating a 
random number and for storing it in the fourth 
memory means, and 

the verification means 106 verifies the legiti- 
macy of the response by verifying that the 
response stored in the fifth memory means 105 
is identical with encryption of the challenging 
data stored in the fourth memory means 103 
with the encryption key. 

16. The device for authenticating user's access rights 
to resources of claim 14, wherein ■ 

the unique security characteristic information 
of the device 14 is a decryption key of a cipher 
function, 

the verification device 10 comprises random 
number generation means 102 for generating a 
random number, sixth memory means 103 for 



the unique security characteristic information 
of the device 14 is a decryption key of a cipher 5 
function, 

the challenging data 18 is encryption of infor- 
mation using the cipher function with the 
encryption key corresponding to the decryption 
key, and 10 
the verification means 106 verifies the legiti- 
macy of the response by verifying that the 
response 19 generated by the response gener- 
ation means 1 16 is identical with decryption of 
the challenging data with the decryption key. is 



the unique security characteristic information 20 
of the device 14 is an encryption key of a cipher 
function, and 

the verification means 106 verifies the legiti- 
macy of the response by verifying that the 
response 1 9 generated by the response gener- 25 
ation means 116 is identical with encryption of 
the challenging data with the encryption key. 
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storing the generated random number and sev- 
enth memory means 1 22 for storing a seed tor 
challenging data, and wherein 
the random number generation means 102 
stores the generated random number in the 5 
sixth memory means 103 while randomizing 
the seed for the challenging data stored in the 
seventh memory means 122 by. executing pre- 
defined calculations to the random number 
stored in the sixth memory means 103 and the w 
seed stored in the seventh memory means 122 
and then storing the randomized seed as chal- 
lenging data in the fourth memory means, and 
the verification means 106 of the verification 
device 10 de- randomizes the response stored ts 
in the fifth memory means 105 by executing 
predefined calculations to the random number 
stored in the sixth memory means 103 and the 
response stored in the fifth memory means 
105, and then verifies the legitimacy of the de- 20 
randomized response by verifying that the de- 
randomized result is identical with decryption of 
the seed stored in the seventh memory means 
1 22 with the decryption key which is the unique 
security characteristic information of the device 25 
14. 

17. The device for authenticating user's access rights 
to resources of claim 14, wherein 

30 

the unique security characteristic information 
of the device 14 is the signature key of a digital 
signature function, and 

the verification device 10 comprises random 
number generation means 102 for generating a 35 
random number and storing the generated ran- 
dom number as challenging data in the fourth 
memory means, and wherein 
the verification means 106 of the verification 
device 10 verifies the legitimacy of the 40 
response by verifying that the response stored 
in the fifth memory means 105 is identical with 
the digital signature for the challenging data 
stored in the fourth memory means, which is 
calculated with the signature key which is the <ts 
unique security characteristic information of 
the device 14. . 

18. The device for authenticating user's access rights 

to resources of claim 15. wherein so 

the unique security characteristic information 
of the device 14 is the private key D of an RSA 
public key pair with a modulus n, and 
the verification means 106 verifies the legiti- ss 
macy of the response by verifying that the E-th 
power of the response R stored in the fifth 
memory means 105. where E denotes the pub- 
lic key associated with the private key D, is con- 



gruent with the challenging data C stored in the 
fourth memory means modulo n 
(R = mod n = C mod n ). 

19. The device for authenticating user's access rights 
to resources of claim 16, wherein 

the unique security characteristic information 
of the device 14 is the private key D of an RSA 
public key pair with a modulus n, 
a seed C for challenging data stored in the sev- 
enth memory means 122 is an RSA-encryption 
of data K with the public key E of the RSA pub- 
lic key pair (DE mod $ (n) = 1 , 
C = K E mod n), 

a random number r generated by the random 
number generation means 102 is stored in the 
sixth memory means 103, 
challenging data C generated and stored in the 
fourth memory means satisfies the relation 
C = r E C mod n , and 

the verification means 106 verifies the legiti- 
macy of the response R stored in the fifth mem- 
ory means 105 by verifying that the quotient of 
R divided by r modulo n is congruent with the 
data K modulo n { K mod n = MR mod n ). 

20. The device for authenticating user's access rights 
to resources of claim 18 or 19, wherein 

a proof support information t 13 stored in the 
third memory means 113 satisfies the relation 
t = D - e + w $ (n) , where e denotes user 
unique identifying information 16 stored in the 
second memory means 1 15, w denotes a con- 
flict-free random number determined depend- 
ent upon both n and e and $ (n) denotes the 
Euler number of n, and 

the response generated by response genera- 
tion means 1 16 is identical with the D-th power 
of challenging data C stored in the first memory 
means 1 1 1 modulo n ( R = C D mod n ). 

21. The device for authenticating user's access rights 
to resources of claim 20, wherein 

the response generation means 116 further 
comprises: 

third calculation means 112 for calculating the 
Mh power of challenging data C stored in the 
first memory means 111 modulo n (C l mod n), 
where t denotes proof support information 13 
stored in the third memory means 113; 
fourth calculation means 1 14 for calculating the 
e-th power of the challenging data C modulo n 
(C e mod n), where e denotes user unique iden- 
tifying information 16 stored in the second 
memory means 115; and 
fifth calculation means 116 for calculating a 
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response R by multiplying the result calculated 
by the third calculation means n 2 by the result 
calculated by the fourth calculation means 114 
modulo n (R = C l C 9 mod n ). 

5 

22. The device for authenticating user's access rights 
to resources of claim 21 , further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 10 
with from the outside, confining the second 
memory means 1 15 and the fourth calculation 
means 114. 

23. The device for authenticating user's access rights 15 
to resources of claim 18 or 19, wherein 
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means 114. 

26. The device for authenticating user's access eights 
to resources of claim 1 5, wherein 

the unique security characteristic information 
of the device 14 is a key D of a Pohlig-Hellman 
key pair of a modulus p, and 
the verification means 106 verifies the legiti- 
macy of the response by verifying that the E-th 
power of the response R stored in the fifth 
memory means 105, where E denotes the 
counterpart key of the key D 
( DE mod (p-1 ) = 1 ), is congruent with the chal- 
lenging data C stored in the fourth memory 
means modulo p ( R E mod p = C mod p ). 



proof support information t 13 stored in the 
third memory means 113 satisfies the relation 
t = D + F(n, e) , where e denotes user unique 20 
identifying information 16 stored in the second 
memory means 115, and F(x, y) denotes a two- 
variable collision-free function, and 
a response generated by the response genera- 
tion means 1 16 is identical with the D-th power 25 
of challenging data C stored in the first memory 
means 1 1 1 modulo n ( R » C D mod n ). 



24. The device for authenticating user's access rights 
to resources of claim 23, wherein 30 



25. The device for authenticating user's access rights 
to resources of claim 24, further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 
with from the outside, confining the second 
memory means 1 15 and the fourth calculation 



27. The device for authenticating user's access rights 
to resources of claim 16, wherein 

the unique security characteristic information 
of the device 14 is a key D of a Pohlig-Hellman 
key pair of a modulus p, 

a seed C for challenging data stored in the sev- 
enth memory means 422 is Pohiig-Hellman- 
encryption of data K with the counterpart key E 
of the key D (DE mod (p-1) = 1 , 
C = K E mod p), 

a random number r generated by the random 

number generation means 402 is stored in the 

sixth memory means 403, 

challenging data C stored in the fourth memory 

means satisfies the relation C = r E C mod p , 

and 

the verification means 106 verifies the legiti- 
macy of the response R stored in the fifth mem- 
ory means 405 by verifying that the quotient of 
R divided by r modulo p is congruent with the 
data K modulo p ( K mod p - r " n R mod p ). 

28. The device for authenticating user's access rights 
to resources of claim 26 or 27, wherein 

proof support information t 13 stored in the 
third memory means 413 satisfies the relation 
t = D+ F(p t e) , where e denotes the user 
unique identifying information 16 stored in the 
second memory means 415, and F(x, y) 
denotes a two-variable collision-free function, 
and 

a response generated by the response genera- 
tion means 416 is identical with the D-th power 
of challenging data C stored in the first memory 
means 41 1 modulo p ( R = C 0 mod p ). 

29. The device for authenticating user's access rights 
to resources of claim 28, wherein 

the response generation means 416 further 



the response generation means 116 further 
comprises: 

third calculation means 1 12 for calculating the 
t-th power of challenging data C stored in the 35 
first memory means 1 1 1 modulo n, where t 
denotes the proof support information 13 
stored in the third memory means 1 13 (C 1 mod 
n); 

fourth calculation means 1 1 4 for calculating the 40 
F(n, e)-th power of the challenging data C mod- 
ulo n (C F(n,e) mod n), where e denotes the user 
unique identifying information 16 stored in the 
second memory means 115 and F(x, y) 
denotes a two-variable collision-free function; 45 
and 

fifth calculation means 116 for calculating a 
response R by dividing the result calculated by 
the third calculation means 112 by the result 
calculated by the fourth calculation means 114 so 
modulo n (R = C 1 C" F(ne) mod n ). 
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comprises: 

third calculation means 412 for calculating the 
t-th power of challenging data C stored in the 
first memory means 411 modulo p, where t 
denotes the proof support information 1 3 5 
stored in the third memory means 413 (C 1 mod 
P): 

fourth calculation means 414 for calculating the 
F(p, e)-th power of the challenging data C mod- 
ulo p (C F ( p,e ) mod p), where e denotes the user w 
unique identifying information 16 stored in the 
second memory means 415 and F(x. y) 
denotes a two-variable collision-free function; 
and 

fifth calculation means 416 for calculating a is 
response R by dividing the result calculated by 
the third calculation means 412 by the result 
calculated by the fourth calculation means 414 
modulo p ( R = C x C * F(p e) mod p ). 

20 

30. The device for authenticating user's access rights 
to resources of claim 29, further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 25 
with from the outside, confining the second 
memory means 415 and the fourth calculation 
means 414. 

31 . The device for authenticating user's access rights 30 
to resources of claim 16, wherein 



32. The device for authenticating user's access rights 



to resources of claim 31 , wherein 

proof support information t 13 stored in the 
third memory means 513 satisfies the relation 
t a D + F(p, e) , where e denotes the user 
unique identifying information 16 stored in the 
second memory means 515 and F(x, y) 
denotes a two-variable collision-free function, 
and 

a response R generated by the response gen- 
eration means 516 is identical with the quotient 
of C divided by X-th power of u modulo p 
( R = u * X C mod p ), where the pair C and u is 
the challenging data stored in the first memory 
means 51 1. 

33. The device for authenticating user's access rights 
to resources of claim 32, wherein 

the response generation means 516 further 
comprises: 

third calculation means 512 for calculating the 
t-th power of the component u of the challeng- 
ing data pair stored in the first memory means 
51 1 modulo p, where t denotes proof support 
information stored in the third memory means 
513 (ut mod p); 

fourth calculation means 514 for calculating the 
F(p, e)-th power of u modulo p (u Ftp e) mod p), 
where e denotes the user unique identifying 
information 16 stored in the second memory 
means 515 and F(x, y) denotes a two-variable 
collision-free function; and 
fifth calculation means 516 for calculating a 
response R by dividing the product of the other 
component C of the challenging data pair and 
the result calculated by the fourth calculation 
means 514 by the result calculated by the third 
calculation means 512 modulo p 
(R = Cu Ftn,e) u* l modp). 

34. The device for authenticating user's access rights 
to resources of claim 33, further comprising: 

protect means 160 for preventing any data 
inside from being observed or being tampered 
with from the outside, confining the second 
memory means 515 and the fourth calculation 
means 514. 

35. The device for authenticating user's access rights 
to resources of claim 17, wherein 

the unique security characteristic information 
of the device 14 is the signature key X of an 
EIGamal public key pair with a modulus p and a 
generator G, 

the public key Y corresponding to X is the X-th 
power of G modulo p (Y = G mod p), 



the unique security characteristic information 
of the device 14 is the private key X of an EIGa- 
mal public key pair with a modulus p and a gen- 35 
erator G, 

the public key Y corresponding to X is the X-th 

power of G modulo p ( Y = G x mod p ), 

u denotes the z-th power of the modulo p 

(u = G 2 mod p ) for a random number z, <o 

K' denotes the product modulo p of the z-th 

power of Y modulo p and a data K 

(K = Y 2 Kmodp), 

the seventh memory means 522 retains the 
pair of u and K\ 45 
a random number r generated by the random 
generation means 602 is stored in the sixth 
memory means 603, 

C denotes the product modulo p of K' and r 
(C = rK' mod p ), so 
the fourth memory means retains the pair C 
and u. and 

the verification means 106 verifies the legiti- 
macy of the response R stored in the fifth mem- 
ory means 505 by verifying that the quotient of 55 
R divided by r modulo p is congruent with K 
modulo p (K mod p = r* Rmodp). 
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a response stored in the fifth memory means 
605 is a pair of R and S, and 
the verification means 606 verifies the legiti- 
macy of the response R stored in the fifth mem- 
ory means 605 by verifying that the C-th power s 
of G for the challenging data C stored in the 
fourth memory means is congruent modulo p 
with the product of the R-th power of Y and the 
S-th power of R (G c mod p = Y R R s mod p ). 

w 

36. The device for authenticating user's access rights 
to resources of claim 35, wherein 

proof support information t 13 stored in the 
third memory means 613 satisfies the relation is 
t = D + F(p, e) , where e denotes the user 
unique identifying information 16 stored in the 
second memory means 616. and F(x, y) 
denotes a two-variable collision-free function, 
and 20 
the response generation means 1 16 generates 
a response pair R and S by carrying out the fol- 
lowing steps of: 

generating a random number k; 

calculating R as the k-th power of G modulo p 25 

(R = G k mod p); and 

calculating S according to the relation 
S = (C- RX) k~ 1 mod (p-1) . 

37. The device for authenticating user's access rights 30 
to resources of claim 36, further comprising: 

protect means 160 or preventing any data 
inside from being observed or being tampered 
with from the outside, confining the second 35 
memory means 616 and the fourth calculation 
means 614. 

38. The device for authenticating user's access rights 

to resources of claim 4, wherein 40 

the user unique identifying information 16 
stored in the second memory means 715 is a 
decryption key of a cipher function, 
the proof support information 13 stored in the 45 
third memory means 713 is an encryption of 
the unique security characteristic information 
of the device with the encryption key corre- 
sponding the decryption key, and 
the first calculation means 712 calculates the so 
unique security characteristic information of 
the device 14 by decrypting the proof support 
information stored in the third memory means 
713 with the decryption key stored in the sec- 
ond memory means 715. 55 

39. The device for authenticating user's access rights 
to resources of claim 38, wherein 



the cipher function is of the asymmetric key 
cryptography, and 

the user unique identifying information 16 is a 
component of the key pair of the cipher func- 
tion. 

40. The device for authenticating user's access rights 
to resources of claim 39, wherein 

the cipher function is of the public key cryptog- 
raphy, and 

the user unique identifying information 16 is the 
private key of the public key pair of the cipher 
function. 

41. The device for authenticating user's access rights 
to resources of claim 38, wherein 

the cipher function is of the symmetric key 
cryptography, and 

the user unique identifying information 1 6 is the 
common secret key of the cipher function. 

42. The device for authenticating user's access rights 
to resources of claim 8 or 16. wherein 

the verification device 10 further comprises: 
eighth memory means 310a for storing a clear 
data encryption of which is the challenging 
data or the seed for challenging data stored in 
the first memory means 111; and 
comparison means 310b for examining 
whether the clear data stored in the eighth 
memory means 310a is identical with data 
inputted to the comparison means 310b, and 
wherein 

the verification means 106 feeds the response 
or the de-randomized value of the response 
stored in the fifth memory means 105 to the 
comparison means 310b, receives the answer 
from the comparison means 310b, and thereby 
the verification means 106 verifies the legiti- 
macy of the response if and only if the received 
answer shows that the clear data stored in the 
eighth memory means 310a is identical with 
the data inputted to the comparison means 
310b. 

43. The device for authenticating user's access rights 
to resources of claim 8 or 16, wherein 

* the verification device 10 further comprises: 
ninth memory means 310a for storing a value 
obtained by applying a one-way function to 
clear data encryption, of which is the challeng- 
ing data or the seed for challenging data stored 
in the seventh memory means "22; 
sixth calculation means 310c for outputting a 
value calculated by applying the one-way func- 
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tion to an inputted data; and 
comparison means 310b for examining 
whether the value stored in the ninth memory 
means 310a is identical with data inputted to 
the comparison means 3 10b, and wherein s 
the verification means 106 feeds the response 
or the de-randomized value of the response to 
the sixth calculation means 310c, receives a 
result from the sixth calculation means 310c. 
feeds the result to the comparison means 31 0b to 
and receives an answer from the comparison 
means 310b, and thereby the verification 
means 106 verifies the legitimacy of the 
response if and only if the received answer 
shows that the result of the calculation by the is 
sixth calculation means 310c is identical with 
the data stored in the ninth memory means 
310a. 



44. The device for authenticating user's access rights 
to resources of claim 8 or 16, wherein 
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The device for authenticating user's access rights 
to resources of claim 8 or 16, wherein 
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the verification device 10 further comprises: 
program execution means 310 for executing 
code of a program encryption of which is the 25 
challenging data stored in the seventh memory 
means 122, and wherein 
the verification means 106 feeds the response 
stored in the fifth memory means 105 as pro- 
gram code to the program execution means 30 
310, and 

the program execution means 310 correctly 
functions if and only if the response generation 
means 1 16 correctly decrypts the challenging 
data which is an encryption of the code of the 35 
program, that is, the encryption of the program 
is correctly decrypted. 



40 



the verification device 10 further comprises: 
program execution means 310; 
program storing means 310g; and 
program decryption means 31 Oh, and wherein 45 
the program storing means 3l0g stores code of 
a program a part or all of which is encrypted, 
an encryption of the decryption key for the par- 
tial or whole encrypted program code is the 
challenging data stored in the seventh memory so 
means 122, 

the verification means 106 feeds the response 
to the program decryption means 31 Oh, 
the program decryption means 31 Oh decrypts 
the program stored in the program storing ss 
means 31 Og with the response as a decryption 
key, and 

the program execution means 310 correctly 
executes the decrypted program if and only if 



the response generation means 116 correctly 
decrypts the challenging data, that is, the 
decryption key for decrypting the encryption of 
the program is correctly decrypted. 

46. The device for authenticating user's access rights 
to resources of claim 14, wherein 

the proving device 11 and the verification 
device 10 are installed in a box material, and 
the verification device 10 transfers the chal- 
lenging data 18 stored in the fourth memory 
means to the first memory means 1 1 1 of the 
proving device 1 1 and the proving device 1 1 
transfers the response 19 generated by the 
response generation means 116 to the fifth 
memory means 105 of the verification device 
1 0 without using a communication network out- 
side of the box material. 

47. A method for authenticating user's access rights to 
resources by verifying the legitimacy of a response 
generated from challenging data for proving the 
user's access rights, comprising: 

a step for storing the challenging data; 

a step for storing unique identifying information 

of the user; 

a step for storing proof support information 
which is a result of predetermined computa- 
tions to the unique identifying information of the 
user and unique security characteristic infor- 
mation; 

a step for generating a response by executing 
predetermined computations to the challenging 
data, the unique identifying information of the 
user and the proof support information; and 
a step for verifying the legitimacy of the 
response by verifying that the response, the 
challenging data and the unique security char- 
acteristic information- satisfy a specific prede- 
fined relation. 

48. A computer program product for use with a compu- 
ter, the computer program product comprising: 

a computer usable medium having computer 
readable program code means embodied in 
the medium for causing the computer to 
authenticate user's access rights to resources 
by verifying the legitimacy of a response 19 
generated from challenging data 1 8 for proving 
the user's access rights, the computer program 
product having: 

computer readable program code means for 
causing the computer to store the challenging 
data 18; 

computer readable program code means for 
causing the computer to store unique identify- 
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ing information of the user 16; 
computer readable program code means for 
causing the computer to store proof support 
information 13 which is a result of predeter- 
mined computations to the unique identifying 5 
information of the user 16 and unique security 
characteristic information 14; 
computer readable program code means for 
causing the computer to generate a response 
19 by executing a predetermined computations io 
to the challenging data 18, the unique identify- 
ing information of the user 16 and the proof 
support information 13; and 
computer readable program code means for 
causing the computer to verify the legitimacy of is 
the response 19 by verifying that the response 
19, the challenging data 18 and the unique 
security characteristic information 14 satisfy a 
specific predefined relation. 

20 

49. A computer program product for use with a compu- 
ter, the computer program product comprising: 

a computer usable medium having computer 
readable program code means embodied in 25 
the medium for causing the computer to gener- 
ate a response 19 from challenging data 18, 
the legitimacy of which is to be verified for 
authenticating user's access rights, the compu- 
ter program product having: 30 
computer readable program code means for 
causing the computer to store the challenging 
data 18; 

computer readable program code means for 
causing the computer to store unique identify- 35 
ing information of the user 1 6; 
computer readable program code means for 
causing the computer to store proof support 
information 13 which is a result of predeter- 
mined computations to the unique identifying 40 
information of the user 16 and unique security 
characteristic information 14; and 
computer readable program code means for 
causing the computer to generate a response 
19 by executing predetermined computations 45 
to the challenging data 18, the unique identify- 
ing information of the user 16 and the proof 
support information 13. 

50. A program execution control device for authenticat- so 
ing user's access rights to resources by verifying 

the legitimacy of a response generated from chal- 
lenging data for proving the user's access rights 
and controlling execution of a program based on 
the authentication of the user's access rights, com- 55 
prising: 

first memory means 111 for storing challenging 
data 18; 



second memory means 1 1 5 for storing unique 
identifying information of the user 16; 
third memory means 1 13 for storing proof sup- 
port information 13 which is a result of prede- 
termined computations to the unique 
identifying information of the user 16 and 
unique security characteristic information of 
the device 14; 

response generation means 1 16 for generating 
a response 19 by executing predetermined 
computations to the challenging data 18, the 
unique identifying information of the user 16 
and the proof support information 13; 
verification means 106 for verifying the legiti- 
macy of the response 19 by verifying that the 
response 19, the challenging data 18 and the 
unique security characteristic information 14 
satisfy a specific predefined relation; and 
continuation means for continuing execution of 
the program if the legitimacy of the response is 
verified. 

51. An information processing apparatus for authenti- 
cating user's access rights to specific information 
processing resources by verifying the legitimacy of 
a response 19 generated for proving the user's 
access rights and permitting access to the specific 
information processing resources, comprising: 

first memory means 1 1 1 for storing challenging 
data 18; 

second memory means 1 15 for storing unique 
identifying information of the user 16; 
third memory means 1 13 for storing proof sup- 
port information 13 which is a result of prede- 
termined computations to the unique 
identifying information of the user 16 and 
unique security characteristic information 14; 
response generation means 1 16 for generating 
a response 19 by executing predetermined 
computations to the challenging data 18, the 
unique identifying information of the user 16 
and the proof support information 13; 
verification means 106 for verifying the legiti- 
macy of the response 19 by verifying that the 
response 19, the challenging data 18 and the 
unique security characteristic information 14 
satisfy a specific predefined relation; and 
permission means for permitting access to the 
specific information processing resources if the 
legitimacy of the response is verified. 



25 



EP 0 792 044 A2 



15' 



14 



PROVING DEVICE 11 
17 



CHALLENGING DATA 18 



VERIFICATION 
ROUTINE 



RESPONSE 
GENERATION 
PROGRAM 



UNIQUE SECURITY 
CHARACTERISTIC 
INFORMATION OF 
THE DEVICE 




RESPONSE 19 
k VERIFICATION DEVICE 10 



USER IDENTIFYING 
INFORMATION 



ACCESS 
TICKET 



13- 



12- 



V 



\ 



16 

W 



13 TOKEN 20 



ACCESS 
TICKET 



ACCESS TICKET 
GENERATION 
DEVICE 



FIG.1 



26 



EP 0 792 044 A2 



VERIFICATION DEVICE 10 



34 



APPLICATION 



VERIFICATION 
ROUTINE 



UNIQUE SECURITY 
CHARACTERISTIC 

INFORMATION 
OF THE DEVICE 



PROVING DEVICE 11 
32 



PROVING PROGRAM 



ACCESS TICKET 




PROVING HARDWARE 




PC OR WORKSTATION 31 



33 



FIG.2 



27 



EP 0 792 044 A2 



VERIFICATION DEVICE 10, 



PROVING DEVICE 11 



ACCESS TICKET 

PUBLIC KEY 
STORING MEANS 



101 

^-102 



RANDOM NUMBER 
GENERATION 
MEANS 

i 



RANDOM NUMBER 
STORING MEANS 



0 



103 



1 



Y2 



■105 



RESPONSE 
STORING 
MEANS 



I 



VERIFICATION MEANS 

"T 



I 



EXECUTION 
MEANS 



ERROR 
[TRAPPING 
MEANS 



t 



CHALLENGING DATA 
STORING MEANS 



r 



113 



ACCESS TICKET 
STORING MEANS 



112 



FIRST 
CALCULATION 
MEANS 



r 



m 

115 



USER IDENTIFYING 

INFORMATION 
STORING MEANS 



seXnd 
calculation 

MEANS 



114 



RESPONSE 
GENERATION 
MEANS 



106 



107 



108 



FIG.3 



28 



EP 0 792 044 A2 




EP 0 792 044 A2 



o 

e 



II 

o 



o 
E 

o 



o 
II 




V 










CO 












o 










C2 






o 






Ljl_ 


UMI 




E 




EXECUTIO 




-RAND 




CXI 

ii 






UJ 














31 



EP 0 792 044 A2 



310a- 



MEMORY MEANS 

. K 




EXECUTION OF PROGRAM 



FIG.7 



FIG.8 




START 







CHALLENGING DATA IS SENT 






RESPONSE IS RECEIVED - 



IS THE 
RECEIVED RESPONSE 
THE EXPECTED 
ONE? 



YES 




EXECUTION. OF PROGRAM 








END 



NO 




SUSPENSION 
OF EXECUTION 




32 



EP 0 792 044 A2 



310 




310c 



310a 





310b 



EXECUTION OF PROGRAM 



FIG. 9 



33 



EP 0 792 044 A2 




START 







CHALLENGING DATA IS SENT ' 







RESPONSE IS RECEIVED 




FIG. 10 



34 



EP 0 792 044 A2 



310d 



310e 



31 Of 








ENCRYPTED CODE IS SENT 






CODE IS RECEIVED 






EXECUTION OF CODE 







FIG.12 



35 



EP 0 792 044 A2 



K' 



310g 



310h 



310i 



ENCRYPTED 
CODE 
STORING 



DECRYPTION 



CODE 
LOADING 



310f 



FIG.13 



CODE 
EXECUTION 




DECRYPTION KEY FOR 
ENCRYPTED CODE IS SENT 



DECRYPTION KEY IS RECEIVED 



DECRYPTION OF ENCRYPTED CODE 



EXECUTION OF CODE 



FIG. 14 



36 




37 



EP 0 792 044 A2 



RECEIVING DATA 
(FROM VERIFICATION DEVICE) 
CHALLENGING DATA C 
MODULUS n 



ACCESS TICKET 
t 



FIRST CALCULATION 



USER IDENTIFYING 
INFORMATION STORING 



EXPONENT CALCULATION 
F (e,n) 



SECOND CALCULATION 
S=C F (e ' n) mod n 





RESPONSE CALCULATION 




R=R / S~ 1 mod n 



FIG.16 



38 



EP 0 792 044 A2 




40 



EP 0 792 044 A2 



RECEIVING DATA 
(FROM VERIFICATION DEVICE) 
CHALLENGING DATA 
C MODULUS n 



I/F s BETWEEN 

THE HOST AND 
THE CARD 



ACCESS TICKET 
STORING 





n' 


t' 


n 


t 


n" 


t" 


* 



RETRIEVING AN 
ACCESS TICKET t 
CORRESPONDING TO 
THE MODULUS n 



FIRST CALCULATION 
R'M^mod n 



RESPONSE GENERATION 
R=R' • S mod n 



USER IDENTIFYING 
INFORMATION STORING 
e 



SECOND CALCULATION 
S=C e mod n 



HOST-SIDE 
(PC OR WORKSTATION) 



CARD-SIDE 



FIG. 19 



41 



EP 0 792 044 A2 



ID 



O 



2 



2 



li 



QCCpl 

LU^ 

CO 



CO 



» — 

LU 


O 


O 


il 

LU UJ 


Q- 
X 


Z 3 

LU 


LU 


o 



65 

LU O 
C-3 



CO 



CNI 



ON 


ING 




ion: 


TOR 


CO 


— i 


CO 
















o 


DA 





o 
z 
, - or 



CO 



is 



g3 



CO 



CO ^ 

IS 



3 




LU 


CO 


LU 




CO 


1 


LU 




CJ5 
Z 
















CHi 

VI if 


CO 



CSI - 



o 

CD 




LU 

^ Z^ 

P < 
ft: O LU 



CO 
LU 



uj tn 



o 




o 








5E 


CO 






CO 


1 













or 

LU 
QQ 



CO 

z 



§ LU 
Z o 



z: 









MP 










[JMR 

m 








ION 


CO 








o z 




r— 






RANDOM 1 
STORING 




DE-RAND 
MEA 




EXECU 


MEA 



CM 
O 



O 



CNI 



O 
rO 



42 



EP 0 792 044 A2 



o 
E 
o 



o 
E 

o 



II 

a: 




a. 




mod 












i 

v— 

II 













o 

LU 
X 



CD 



LU 
LU 




CI. 


CO 


o 




LU 




o 




5E 


E 




o 


LU 


LU 






1 

t 




Jl 


HA 






o 







43 



EP 0 792 044 A2 




44 



EP 0 792 044 A2 







ONUL 




TOR 




to 




IDE 


o » 
| 


OC 




LU 

GO 


or 


o 


ZD 


U- 

z 





tj 










CD 


i — 




:ss 




o 


o 


















o 












cu 


fc 








cL 


o 






u. 


o 


3 

II 




UJ 




CO 






■ cr 




■C mod 


mod p) 






cL 


>- 


II 

or 


X 
| =3 
II 





NO 
O 



o 




z 












o 




; RAND 







CD 




c 










-o 






)0MIZ 




? mo 




NOU 






















i 

UJ 




ii 






a 











LU 




CD 




NUM 


ONI 




CXI i_ 


RANDOM 


STO 



45 




EP 0 792 044 A2 



CO 
C^ 

o 



o 
or 

Q- 



CO 
CO 







; OAT 


CO 

z 






c5 


o 






ALLE 




O 




co 







ll 

z ^ 
o 



CO 



82 



CO 



CO 



CO 





z 






ULATIO 




COND 


EANS 


LU 


o 




CO 


CAL 







LO 

o 



or 


CO 


MBE 


EAN 






Z 


CD 






RANDO 


STORI 



CD 



CO 



o £5 



^ 



-3- 

CD 



CO 
O 
CO 



co 
o 

CO 



P S ^ 

&=> g § 



CO 



CO 

z 

£3 



or z 
or S 

LxJ Q> 



• CO 

z 

[5 




46 



EP 0 792 044 A2 




47 



EP 0 792 044 A2 




48 



(19) 




li 



(12) 



(88) Date of publication A3: 

27.05.1998 Bulletin 1998/22 



EuroparSWTes Patentamt 
European Patent Office 
Off ice europeen des brevets (11) EP 0 792 044 A3 

EUROPEAN PATENT APPLICATION 

(51) Int. CI 6 : H04L 9/32, G06F 1/00 



(43) Date of publication A2: 

27.08.1997 Bulletin 1997/35 

(21) Application number: 97102779.2 

(22) Date of filing: 20.02.1997 



(84) Designated Contracting States: 


• Kobayashi, Kenichi 


DE FR GB 


Ashigarakami-gun, Kanagawa (JP) 




• Aratani, Toru 


(30) Priority: 23.02.1996 JP 62076/96 


Ashigarakami-gun, Kanagawa (JP) 


06.01.1997 JP 418/97 




(71) Applicant: FUJI XEROX CO., LTD. 


(74) Representative: 


Hoffmann, Eckart, Dipl.-lng. 


Minato-ku, Tokyo (JP) 


Patentanwalt, 


(72) tractors: 


Bahnhofstrasse 103 


82166 Grafelfing (DE) 


• Shin, Kil-ho 


Ashigarakarni-gun, Kanagawa (JP) 





CO 

< 

o 

CM 

o 

CL 
LU 



(54) Device and method for authenticating user's access rights to resources according to the 
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(57) The present invention . provides a device for 
authenticating user's access rights to resources, which 
comprises first memory means 111 for storing challeng- 
ing data 18, second memory means 115 for storing 
unique identifying information of the user 116, third 
memory means 113 for storing proof support informa- 
tion 13 which is a result of executing predetermined 
computations to the unique identifying information of the 
user 16 and unique security characteristic information 
of the device 14, response generation means 116 for 
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stored in the first memory means 11 1 , the unique iden- 
tifying information 16 stored in the second memory 
means 115 and the proof support information 13 stored 
in the third memory means 113, and verification means 
106 for verifying the legitimacy of the response 19 by 
verifying that the response 19, the challenging data 18 
and the unique security characteristic information of the 
device 14 satisfy a specific predefined relation. 
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